Iron Speed Designer - Application Security

Product Info

Generated Apps

Technical Materials

Application Security
Built-in security features critical for today's enterprise applications

Iron Speed Designer generates enterprise-class application security features including role-based access control and encryption.

Feature Free
Edition Professional
Edition Enterprise
Edition

Role-based security

Database-resident authentication & access control

Component-level access control

Active Directory

Microsoft Authorization Manager (AzMan)

Application security

Data transmission encryption

Automatic sign-out

Remember Me

URL parameter encryption

Database-resident user authentication and access control. Add end-user authentication (sign-in) and role-based access control as a standard feature to your applications. This authentication feature uses your own user and role data in your database, making it easy to set up and administer. Iron Speed Designer supports an unlimited number of user roles, and individual users can possess multiple roles. For example, the customer service supervisor has one role as a "rep" with access to customer account information, and a second role as "manager" with authorization to issue refunds or credits. These roles are accessible simultaneously without requiring the user to log in under a second role.
Component-level access control. Component-level security can be applied to all .NET controls generated by Iron Speed Designer, including text boxes, dropdown lists and checkboxes. The component-level security mechanism sets the control’s ‘visible’ property, which you can set programmatically at run-time as well.
Active Directory authorization. Include company-wide single sign-on in your generated applications. Optionally use Active Directory groups for role-based access control.
Microsoft Authorization Manager (AzMan) access control. Use the policy store created and maintained by the Microsoft Authorization Manager to control user access to specific pages and controls.
Data transmission encryption. All application data transmitted to and from the client browser is encrypted using the web server's built-in SSL (secure socket layer) encryption. This standard security ensures that no one can see your data as it passes over the public Internet or over your private intranet and local area networks.
Automatic sign-out. Users are automatically logged-out after a designated period of time to guard against identity theft when a user leaves their Web browser open to the application. This is especially important for applications that connect between enterprises.	A Sign In page in the Everest design theme.
Remember Me. This cookie-based feature remembers user names and passwords so application users can quickly sign-in.
URL parameter encryption. Encrypting URL parameters masks critical primary and foreign key values from hackers.



	Copyright © 2005-2008, Iron Speed, Inc. Iron Speed® is a registered trademark. All rights reserved.	Privacy Statement