View
421
Download
0
Category
Preview:
Citation preview
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Data Security ConsiderationsIs this a Public vs. Private Portal?How Will Credentials be Verified? What Do Your Users Have Access To?Will the Portal act as an IdP?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Compliance ConsiderationsHIPAA, COPPA, FERPA or PCI?Organizational policy (e.g. password expiration)? What about auditing and reporting?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Portal IntegrationHow best to instill user confidence & acceptance?How important is branding? Will you provide access to some or all data & apps?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
End User ExperienceHow and from where can they login?How much can I do on my own? Does one login open one door or many?Do I receive meaningful feedback & information?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Technical ConfigurationHow and where is it hosted?Can it handle a spike in user traffic? How important is up-time?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Data Security ConsiderationsIs this a Public vs. Private Portal or Both?How Will Credentials be Verified?What Do You User Have Access To?Will the Portal act as an IdP?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
What Type of Data is Available?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
How Do You Know Who is Who?Are you using a user repository like Active Directory?Will the portal be the Identity Provider?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Do You Need Single Sign-On FlexibilityDo you want to unlock the door once?Do you need to unlock individual doors?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Compliance ConsiderationsWhich regulations drive your field?Navigating HIPAA, COPPA, FERPA, PCI.Design for Compliance Success.Don’t “Shoe-Horn” Compliance After the Fact.
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
On-Line Resources…
FERPA http://familypolicy.ed.gov/faq-pageCOPPA http://www.coppa.org/comply.htmHIPAA http://www.hhs.gov/hipaaPCI https://www.pcisecuritystandards.org/SOX https://en.wikipedia.org/wiki/Sarbanes-Oxley_Act
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Compliance Specific RequirementsPassword length, complexity & expiration.User reporting – Who, When, Where, How & FailuresStrong authentication – is 2-Factor required?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Integration ConsiderationsHow do your users interact with your portal?One key that opens many doors or something different?Key design elements that engender confidence.SAML vs. non-SAML enabled applications.Giving your users the tools they need.
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
How Your Portal Presents Itself.
Immediate Login ScreenBranded & Identifiable“You Shall Not Pass!”Highly Secure
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
How Your Portal Presents Itself.
Specific areas of interestBranded & IdentifiableMore open to looking aroundStill highly secureLogin is fully integrated
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Once Authenticated What Happens Next?Does one key open may doors?SAML vs. non-SAML enabled applications?How are you tracking user activity?Do you have any regulatory reporting requirements?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
End User ConsiderationsWalking your end users journey.Ask Who, What, Where, When, How & Why?Focus on efficiency, engagement and understanding.Communicate expectations clearly.How autonomous can your users be?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
What the user sees matters…
Consistent look & feelBuild their trust and comfortGuide them appropriatelyGet them where they want to goProvide help & feedback quickly
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
End User Engagement
Specific feedback on expectationsActionable items that can be acted onEmpower the user to aid their own progress
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Strong Understanding of…Who are your users?What they can and can’t gain access to.Where they can gain access from.When something goes wrong can they fix it?How will you monitor their activities?
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
1. Data Security2. Compliance3. Integration4. End User Experience5. Technical
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
What’s “Under-the-Hood”?On-premises vs. Cloud vs. Hybrid-cloud configurationUnderstanding user traffic & demand patternsWhere are your users and how do they gain accessHow will you handle system outages & down-timeDisaster recovery implications
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Load BalancingDemand Spikes
Inc. Response TimeMax. User Satisfaction
Failover ProtectedGuarantee UptimeMaint. & Upkeep
Regular BackupsDisaster RecoveryRegulatory Comp.Asset Protection
Things to Consider…
http://www.portalguard.com/resources/whitepapers-1.html
Other Items to Consider…What regulatory compliance issues do you face?Total Cost of Ownership (Assets + Manpower)Hybrid Cloud Best PracticesCapability & Capacity of Your Existing IT Dept.
Things to Consider…
Security should never be an afterthought when integrating a
portal into your environment.
http://www.portalguard.com/resources/whitepapers-1.html
Recommended