Security Features

genXserv has a number of built-in security features to protect its data and integrity, including the encryption of all external communication, authentication of all users and various authorisation techniques.

Encryption and Authentication

All Web (HTTP) transactions are performed using SSL/TLS encryption.

All mail (SMTP) transactions are performed using SSL/TLS encryption.

The core server performs Token based user authentication for all Web (HTTP) transactions. All user and configuration files are encrypted to restrict access. HTTP and SMTP server certificates are always issued by a trusted Certificate Authority.

Authorisation/Access Control

The core server configuration enables primary access control to the server by specifying which TCP/IP socket hosts are allowed access and which are denied - host authorisation to connect to server.

The HTTP communication module configuration enables two types of secondary access control to the server. The first type enables you to specify which HTTP client hosts are allowed access and which are denied - host authorisation to send Web (HTTP) request to server. The second type enables you to specify which HTTP client users are allowed access at a particular level and which are denied - user authorisation to send Web (HTTP) request to server, this controls user access to specific schemas, data and operations.

The SMTP communication module configuration enables four types of secondary access control to the server. The first type enables you to specify which SMTP client hosts are allowed access and which are denied - host authorisation to send mail (SMTP) request to server. The second type enables you to specify which mail originator addresses (From address) are allowed access and which are denied - address authorisation to send mail (SMTP) request to server. The third type enables you to specify which mail recipient addresses (To/Cc/Bcc address) are allowed access and which are denied - address authorisation to send mail (SMTP) request to server. The final type enables you to specify a message subject mandatory parameter which controls whether mail is accepted or rejected; this eliminates unwanted mail - subject authorisation to send mail (SMTP) request to server.