Zylinc 6.x security

Dette emne er fortrinsvis for administratorer og/eller folk som bestyrer en Zylinc-løsning

Kun slutbruger-hjælpen er for tiden oversat til dansk. Hjælp til installation og administration af Zylinc-løsninger er for tiden på engelsk.

The Zylinc 6.x software is intended to be installed on-premises at partners or customers own infrastructure and to be afforded the same level of protection from external threats as the rest of the partner/customer's IT systems, i.e. the partner or customer is responsible for setting up a secure IT infrastructure with e.g. appropriate firewalls and password protection means.

The assumption being that if potential harmful intruders possess the skills to gain access from the outside of the customers firewalls and thus gain access to systems on the inside of the firewall, then they will also be able to gain access to the Zylinc 6.x software and its data as such, no matter what extra level of security Zylinc may add.

On the inside of the firewall employees will have access to the solution if they have user credentials to login to the solution. If they have harmful intensions - which we assume they have not - then they may be able to access the solution and the data it contains with much lesser skills than is required to gain access through firewalls. However, unintended access will still require software skills that ordinary employees will typically not possess.

In short, the security design principle is that the customers must have strong firewall protection in place and they should only employ people they trust.

Data is kept in a SQL database. Access to this database is password protected. Access to the Zylinc 6.x solution is protected by a username and password. The password is salted and stored in the SQL database.

The software that we ship comes straight from our development and build tools and the binaries cannot contain virus or malware – unless our development tools are modified by virus or malware.

Zylinc 6.x software contains multiple open-source libraries some of which could have security issues. If the Zylinc software was intended to be exposed directly on the internet, then we would naturally have to ensure we always use the best available versions. In our mode of operation this is not required as the software is only intended to run in the safe zone behind a strong firewall.

The software download site is a read-only ftp site with a password that is changed daily. The updated credentials to this ftp site are only available to registered Zylinc Support users.