• Home

  • Documents

  • ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft...
11
Sitrion ONE Infrastructure & Security

ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

  • Upload
    others

  • View
    4

  • Download
    0

Embed Size (px)

Citation preview

Page 1: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Sitrion ONE

Infrastructure &Security

Page 2: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

• Hosted on Microsoft Azure• Isolated Tenants for every

Customer• No data storage on mobile

devices and the cloud (except Push-Content-Cache)

• Encryption of all communication and messages

• Real-Time access, no Offline storage

Page 3: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

• No replication of backend data, no data storage (except Push-Content-Cache)

• Cache-Content of Push-Data (Cards) leverages Rijndael (AES 128 Bit) Encryption. Dynamically generated keys per tenant-> Sitrion doesn’t know the keys and has no access to the customer tenant

Microsoft Azure Certifications:https://azure.microsoft.com/en-us/support/trust-center/compliance/

Page 4: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

• The hub contains the connectors to the backend systems (SharePoint, SAP etc.)

• Connectivity from the hub to the customer tenant via Azure Service Bus (Outbound only TCP to dedicated Azure IP ranges)

• Encrypted communication between Hub and Cloud via Secure Relay Access Token

Microsoft Azure Service Bus:https://azure.microsoft.com/en-us/services/service-bus/

Page 5: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

• No data storage on the mobile device

• No offline access• Encrypted communication

with the customer tenant via SSL (TLS 1.2, AES 256 CBC, SHA1 & ECDHE RSA)

• Authentication of users leveraging ADFS or Generic Sitrion ONE-Login

Page 6: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Backend Integration

Page 7: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Salesforce REST Office365

iOS

REST

Sharepoint

SAP

Android

Windows Phone

JSON/REST over HTTPS

Hub

API Call (RFC)

The Hub uses Azure Service Bus to communicate with the cloud

Sitrion ONE Cloud is Built on Azure

SP RuntimeLibraries

.NET

Page 8: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Authentication

Page 9: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Salesforce REST Office365REST

iOS

SharePoint

SAP

Android

Windows Phone

User is provisioned 1

User provides any other credentials required for Third Party Systems

3

User Logs into the App

2

Authentication through credentials provided by the user

4

Hub

Page 10: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

Salesforce REST Office365

iOS

REST

SharePoint

SAP

Android

Windows Phone

Technical Team intergrates with ADFS (Trusted Relationship)

1

User logs into ADFS on the app

2

ADFS Tokens Used to Log Into Other Systems

(depending on the backend configuration)

3

Hub

Page 11: ONE Infrastructure Security - Sitrion · Infrastructure & Security • Hosted on Microsoft Azure • Isolated Tenants for every Customer • No data storage on mobile devices and

General Technical Overviewhttp://devcentral.sitrion.com

Security/Architecturehttp://www.sitrion.com/one/developer/documentation/security-guidehttp://www.sitrion.com/one/developer/documentation/integration-guide

Developmenthttp://www.sitrion.com/one/developer/documentation/getting-started/build-your-first-apphttp://www.sitrion.com/one/developer/documentation/development-guide

Application Owners http://www.sitrion.com/one/developer/documentation/integration-guide


Web Security Infrastructure Study

Web Security Infrastructure Study

Documents
Kenneth Watson Partnership for Critical Infrastructure Security Partnership for Critical Infrastructure Security

Kenneth Watson Partnership for Critical Infrastructure Security Partnership for Critical Infrastructure Security

Documents
Critical Infrastructure Security Division

Critical Infrastructure Security Division

Documents
Immutable Infrastructure Security

Immutable Infrastructure Security

Technology
Infrastructure Security

Infrastructure Security

Documents
Communications Infrastructure Security

Communications Infrastructure Security

Documents
VMware Infrastructure Planner Security Whitepaper …files.vip.vmware.com/vmware_infrastructure_planner_security...VMware® Infrastructure Planner Security Whitepaper Understanding

VMware Infrastructure Planner Security Whitepaper …files.vip.vmware.com/vmware_infrastructure_planner_security...VMware® Infrastructure Planner Security Whitepaper Understanding

Documents
Transportation Security and Infrastructure

Transportation Security and Infrastructure

Documents
Ch 10 - Infrastructure Security

Ch 10 - Infrastructure Security

Documents
SECURITY INFRASTRUCTURE SECURITY

SECURITY INFRASTRUCTURE SECURITY

Documents
Hybrid Cloud Infrastructure Security

Hybrid Cloud Infrastructure Security

Documents
Sitrion ONE Tour - Mobile Moments - Dec 2014

Sitrion ONE Tour - Mobile Moments - Dec 2014

Mobile
Internet Infrastructure Security

Internet Infrastructure Security

Documents
Infrastructure Security in Delaware

Infrastructure Security in Delaware

Documents
ICT infrastructure, privacy & security

ICT infrastructure, privacy & security

Documents
Successful Security Infrastructure

Successful Security Infrastructure

Documents
Security Enhancement: Physical Infrastructure

Security Enhancement: Physical Infrastructure

Documents
Network Infrastructure Security

Network Infrastructure Security

Documents
Smart Security Infrastructure

Smart Security Infrastructure

Engineering
Part06 infrastructure security

Part06 infrastructure security

Technology
WEBTRENDS + SITRION SOCIAL ENTERPRISE SOLUTIONcdn.webtrends.com › files › resources › SolutionBrief... · Webtrends for Sitrion is built atop Webtrends Analytics for SharePoint,

WEBTRENDS + SITRION SOCIAL ENTERPRISE SOLUTIONcdn.webtrends.com › files › resources › SolutionBrief... · Webtrends for Sitrion is built atop Webtrends Analytics for SharePoint,

Documents
Infrastructure Security and Emergency …sites.udel.edu/dct/files/2013/10/Rpt.-228-Infrastructure-Security...Infrastructure Security and Emergency Preparedness: Selecting Asset Protection

Infrastructure Security and Emergency …sites.udel.edu/dct/files/2013/10/Rpt.-228-Infrastructure-Security...Infrastructure Security and Emergency Preparedness: Selecting Asset Protection

Documents
Internet Infrastructure Review vol.14 -Infrastructure Security - IIJ

Internet Infrastructure Review vol.14 -Infrastructure Security - IIJ

Documents
Infrastructure Security and Protection

Infrastructure Security and Protection

Documents
Telecommunications Infrastructure Security SS7 · PDF fileSS7 Signalling Security Telecommunications Infrastructure Security Philippe Langlois, P1 Security Inc. phil@p1sec.com

Telecommunications Infrastructure Security SS7 · PDF fileSS7 Signalling Security Telecommunications Infrastructure Security Philippe Langlois, P1 Security Inc. [email protected]

Documents
Critical Infrastructure Security

Critical Infrastructure Security

Documents
Tilo Böttcher, Sr. Program Manager Microsoft Corp Markus Dopp, Director Sales and Marketing Sitrion

Tilo Böttcher, Sr. Program Manager Microsoft Corp Markus Dopp, Director Sales and Marketing Sitrion

Documents
1 Infrastructure Security Games

1 Infrastructure Security Games

Documents
Designing and Building Security Operations Centercdn.ttgtmedia.com/rms/security/Designing-and-Building-Security... · Operation center infrastructure ... security infrastructure;

Designing and Building Security Operations Centercdn.ttgtmedia.com/rms/security/Designing-and-Building-Security... · Operation center infrastructure ... security infrastructure;

Documents
ADVANCED METERING INFRASTRUCTURE SECURITY

ADVANCED METERING INFRASTRUCTURE SECURITY

Documents