RadiantOne uses multiple layers of security so that data stays safe. At the data level, attributes that aren’t required can be omitted from the design, so that such data never reaches the virtual directory itself. At the directory level, access controls determine what information users are able to see. At the network level, VDS supports SSL/TLS so that network traffic stays private.

DATA LEVEL SECURITY FEATURES

Data sources contain information that cannot be shared because of legal, business, political, privacy, or other factors. RadiantOne’s virtualization layer protects this data by only allowing select attributes to be available. The existence of the private data is unknown to the application or user at the VDS level. Protected data remains secure in the controlled environment of the original data source.

DIRECTORY LEVEL SECURITY FEATURES

The RadiantOne Virtual Directory Server’s access controls are modeled on the IETF standards for LDAP v3.

Access Control Instructions (ACI) can be set at any level within the DIT. Access control rules can be either by entry level or directory tree level and the scope defined for each. Access controls can be applied for individual users, groups, or IP addresses for flexible security options.

Delegated authentication requests can be made to other LDAP compliant data sources. This allows user and password information that use varying encryption mechanisms to bind to the underlying source when needed. Security is maintained at the data source level, maintaining consistent access policy and enforcement.

NETWORK LEVEL SECURITY FEATURES

Data transport - SSL

Secure Socket Layer (SSL) encryption is used to transport all data.

Transport Layer Security (TLS)

Authentication support – Kerberos, NTLM, MD5, delegated

Back to top ^