Click Tag to Display Pages: functionality
  • UAC – User Authentication and Authorization
    • Users, Groups (LDAP/ActiveDirectory)
    • Permission Rules: { ALLOW/DENY, Principal, Operation, Resource }
  • DAC – Data Access Control (per-message)
    • Implemented for a few data vendors/clients to meet data distribution requirements (Bloomberg, Reuters)
  • SSL – Data in Transit Encryption (Considerable CPU penalty, recommended for WAN clients only)
  • SSO - Single Sign-On for Web Application
  • Development follows OWASP top 10 standard:
    • Spotbugs (with security plugin)
    • Dependency Check (scan of third-party dependencies against OWASP vulnerabilities database)