|
The Interpeak Web Server Security Package adds the HTTPS communication
protocol to an existing plain-text embedded web server. HTTPS is
implemented in a transparent way, which means that the original
web server does not need to be changed in any way. All CGI-scripts
and equivalent can be left unchanged.
The HTTPS/SSL Embedded Web Server Security Package adds the following
security services to your web interface:
- Authentication using X509 certificates (optional)
- Encryption, excellent way to protect the userids and passwords
used to log
in via the web interface.
- Integrity, information modified since it left the sender is
detected.
- Replay detection, information that is replayed is rejected.
The HTTPS protocol uses SSL, which is the de-facto standard for
web security. All important web browsers suppport SSL - Internet
Explorer, Netscape, Opera. No changes are needed on the clients.
The end-users can continue to use the same browsers as before.
The Interpeak Web Server Security Package is implemented as an
SSL proxy, based on the Interpeak Embedded SSL product. For each
browser that connects, an SSL connection is established. The request
from the browser is decrypted and sent over a cleartext connection
to the real web server. The response from the web server is read
from the clear-text connection and sent encrypted over the SSL connection
to the browser. Transparent, elegant and secure!
|
