This section is primarily for architects wanting to understand the security options for specific ESRI application architectures and products.
ArcGIS technology is widely used today in secure solutions in both commercial and classified environments. ESRI continues to configure and test products so that they can be readily integrated with secure enterprise solutions—typically in concert with other products that deliver or enable security functions. These include relational database management systems (RDBMS) for data confidentiality and data access control, Lightweight Directory Access Protocol (LDAP) and single sign-on (SSO) systems for strong authentication, as well as firewalls and intrusion detection systems for data integrity. ESRI has also incorporated non-repudiation in its transaction management products.
In a typical enterprise solution, many security services are provided by the underlying IT infrastructure that hosts the GIS application. ESRI strives to ensure that the enterprise architect can leverage advances in data management and authentication technologies while harnessing the power of ESRI’s products.
The basic aspects of securing a GIS solution include:
- Secure the System
- Secure Local Connections
- Secure Web Services
- Secure Web Applications
