|
SureDesign is an Internet-based application. Data on the site is protected by multiple layers of security.
The security framework of SureDesign consists of the following important subsystems:
In the SureDesign system, data is stored in folders that are organized hierarchically, meaning that any given folder can contain one or more subfolders.
SureDesign restricts access to folders through a system of access privileges. Users are restricted both by the folders they can access, as well as by the specific actions they can take on the data. All users have read-only access to Agilent catalog content. Users cannot directly access data in the folders of another workgroup.
The Agilent SureDesign administrators have access to all data folders in the SureDesign database.
Any create, update or delete operation performed on an instance of data gets audited. Auditing is conducted to track changes in data and to provide a mechanism for tracing these changes. Auditing captures the following details within an audit entry:
The data (content item) that is modified.
The reason for the change (if available).
The name of the user who performed the create/update/delete operation.
The date on which the change was made.
Users can download files from the SureDesign system. For each downloaded file, SureDesign keeps track of the download date, user ID and design ID. A download log maintains a record of who is accessing data. The download information is logged in a separate table that captures the following details:
The name of the user who performed the download operation.
The name of the file(s) downloaded.
The date on which the download was performed.
Users must register in SureDesign in order to access the content of their workgroup. Users can initiate the registration process themselves, but a workgroup administrator must verify and enable the users before they can access workgroup content. User passwords are encrypted, and users can change their passwords as many times as they like. SureDesign maintains a record of old user passwords.
Note: Only the latest password is marked as current and used for authentication.