For a maximum of security
Your advantages when using PLANTA secure:
- Maximum security
- User comfort
- Complete protection of the PLANTA environment in the internal network
- Can be included in existing security concepts
- Two-factor authentication
PLANTA has always provided a high level of security for customer data with its on-premise solution of PLANTA Project. Customers with high data protection requirements also ask for additional security standards – finding the answer in PLANTA Secure.
PLANTA secure illustrates the current security standard: the two-factor authentication (2FA), which is recommended by the German Federal Office for Information Security.
2FA is an identity proof that has to be provided by the user of a system in order to be able to start the system. The user identifies himself with a combination of two independent factors – something he/she owns and something he/she knows. This is a common principle of ATM machines: when you want to withdraw money, you need to have a bank card and the corresponding PIN.
Applying this approach to software use, instead of PIN and bank card a password and as second factor a hardware part such as a token or a chip card is used in order to be able to log onto the system.
PLANTA secure can be included in existing security concepts. This means that customers can continue to use the authentication method, which is already being used in their company. A token-less authentication using a passcode sent via SMS onto the user’s mobile phone is also possible.
Reverse Proxy: Safe Connection and Access Protection
As an additional security element, PLANTA has implemented a reverse proxy connection. External as well as internal requests are dealt with by the reverse proxy, forwarding them to the application server within the internal network. As there is only a connection between the requesting system and the proxy, the internal network need not to be known. The reverse proxy connection provides a very secure connection via SSL certificate from the client through the firewall to the server and avoids accesses to the server from the outside.
The user authentification can be carried out for several servers via reverse proxy. Thanks to single sign-on, the user only needs to log-on once in order to use the services of several servers.