miSite

miSite allows banks to apply enhanced security protocols and procedures to any system within the bank or planned system to be deployed.

miSite is the comprehensive security module to manage access controls, service execution and data security.  This centralized security control system is fundamentally concerned with two things, users and data.  Rather than the typical J2EE application, SOA service and data store deployment are used in many companies where:

  • An application can perform any operation on any data.
  • An application has users.
  • The application owns and controls its data store.
  • The application is responsible for security.

miSite uses the following model:

  • The authentication of a user is not part of an application.
  • Users exist separately from applications
  • A user can execute applications.
  • A user can perform operations on data.
  • An application is simply a collection of services that access and manipulate data on behalf of an authenticated user.
  • The application has no rights whatsoever within the data store.
  • Applications can discover the rights of the current authenticated user but are not expected to enforce security.

Accordingly, the miSite module ensures a complete separation of concerns between the development and maintenance of an application and security requirements of the institution. The application enables the ability to impose, by injection and interposition, both application and data security on applications. This total separation of concerns allows the implementation of the security policies to follow the laws and organizational practices as they change from time to time without having to resort to application redevelopment.

Key Benefits

  • Solution is purpose built for ease of integration with existing security platforms, including single sign on, LDAP etc
  • Solution can be used to consolidate  and centralize enterprise security protocols and role definition to improve risk and compliance adherence
  • Solution is the security module used in all Zafin Labs solutions, allowing the additional modules to be easily added with existing security protocols. In addition, it can also be used as a standalone solution that can be deployed to improve and consolidate security capabilities.