| |
Comprehensive Security |
 |
Reflection’s built-in and stand-alone security options provide a complete range of encryption, authentication, and authorization methods—all designed to ensure the confidentiality and integrity of data in motion. In fact, when it comes to security, no other host-access solution can compete. With Reflection, you can:
Build encrypted tunnels for non-secure applications
Encrypted tunnels make it possible for data to travel from point A to point B without risk of attack. Reflection lets you set up encrypted tunnels when and where you need them. That means you can secure all your non-secure TCP/IP-based applications, without ever touching the applications themselves.
Safeguard private data with secure file transfers
Using Reflection’s strong authentication and encryption methods, you can effectively safeguard private data traveling over untrusted TCP/IP networks. Reflection’s secure file transfers operate in either batch or interactive mode, using standard protocols such as SFTP or FTP over SSL. And Reflection’s message-checking capability helps to ensure that data has not been tampered with.
Maintain system interoperability by using security standards
Reflection provides full support for security standards that are used across IBM, UNIX, Linux, OpenVMS, and Windows platforms. These include SSL/TLS, SSH, and Kerberos.
Leverage existing authentication and authorization methods
Reflection works with an array of authentication and authorization methods, so you can easily pair it with your existing security framework. To verify user or system identity—and prevent access to private files or systems through nefarious means—Reflection supports Kerberos, PKI, LDAP, smart cards, Active Directory, and portals.
Secure remote connections with ease
Reflection’s patent-pending Secure Token Authorization (STA) feature ensures that remote users can access only approved host applications. STA works with the Reflection Management Server to establish user rights, and then issues digitally signed tokens on demand. No configuration by the user is required.
Manage critical servers from remote locations
Reflection provides remote administration of critical servers with the robust Secure Shell protocol suite, which includes SSH, SFTP, and SCP. Secure Shell clients and servers use strong authentication and encryption methods to shield data from spies, hackers, and other security threats.
Simplify password management—and cut help-desk calls
Reflection’s single sign-on feature gives users a convenient alternative to managing multiple host IDs and passwords. Rather than memorizing passwords or using yellow-sticky reminders, users can access all approved hosts and servers with just one password. This saves users’ time and eases the burden on help desk staff.
|
