|
Sentinel TMS version 3.0 introduces a
variety of new security features that allow the system to
operate within a secure data environment. |
 |
Controlled Access Management System
Sentinel TMS 3.0 includes the new Controlled Access Management System
(CAMS), which controls access to data on a per user/group level. CAMS
is an access control lists (ACL) system, but it
extends the traditional ACL model by allowing you to define
permissions to specific data at a granular level.
The cornerstone of CAMS is the concept of users and groups. A
user is an account that you set up to allow a specific person to
gain access to a Sentinel TMS database. A group is a collection of
one or more user accounts that maps to how your mission is
organized.
The second main component of CAMS is the topic. Topics are categories that you create when you set up your database. After
configuring users and groups, you can use topics to categorize data,
and define who has access to what information.
Permissions
CAMS provides another level of granularity over access control by
letting you configure permissions that define exactly what a user can and
can’t do with an entity or relationship record. The following
permission types are supported:
- View: Allows the person to view the record
- Edit: Allows the user to make changes to the record
- Select Topic: Allows the user to add new topics to
the record
- De-Select Topic: Allows the user to remove existing
topics from the record
- Delete: Allows the user to delete the record
Secure and Manageable
The integration of users, groups, topics, and
permissions provides you with a secure, yet manageable system. Your
existing mission and data structures can remain intact, with
Sentinel TMS providing the data access and security features you
require. Consider the following example:
In this example, we have three groups, A, B, and C. We also have
three users, Mary, Joe and Bob. Mary is a member of two groups, and
these two groups are assigned to several topics. So Mary can View
and Edit the “Abu Musab Zarkawi” and “Pakistani Politics” entities,
but can only view the “Karachi, Pakistan” topic.
Windows Authentication
Sentinel TMS 3.0 provides the ability to use your
existing Microsoft Windows-based user authentication setup with the
Sentinel TMS database. All database access occurs through secure
stored procedures that are authenticated against a Windows user or
group. This ensures that no back doors exist at the database level,
and that all data read/write operations are directly synchronized
with the Sentinel Controlled Access Management System.
Auditing
All user operations relating to searching, reading, and writing
data are audited at the database level, so your system administrator
can review and archive this information. Additionally,
Sentinel TMS stores the user and date for all new and changed
records.
|
