Most shipping corporations, ports/terminals, and other businesses now have their own IT infrastructure to keep their data safe and secure. Companies/ships' data could be lost or misused for numerous objectives as a result of various threats, whether untargeted (Malware, Phishing, Water holing) or targeted (Brute force, Denial of Service, Subverting the supply chain).
Common vulnerabilities for cyber-attacks are, obsolete and unsupported operating systems, outdated or missing antivirus software, inadequate security configuration, Lack of boundary protection, Safety or critical equipment always connected to shore etc, Very few companies can afford to have separate 3rd party data centers to protect their valuable data.
Ship Expert – Enterprise (SE-E), web-based application is featured with Cyber security management requirements and OWASP rules including authentication, cross site scripting, user access control, etc.
User Access:
The SE-E program allows you to establish and assign entity access as well as customize user menu access permissions based on user or role. In any case, the user can only access the menus that have been assigned to them.
• Accepts only unique email address
• Facility to set access rights with combinations of ADD/EDIT/DELETE/VIEW
• Option to provide access only to View the records.
Data Security:
The SE-E program provides the ability to encrypt personnel data stored in the database. Required data fields can be encrypted based on the Customer's corporate policy, preventing the user from viewing personnel information. Unauthorized users are also prohibited from downloading the data in excel or PDF format.
2Factor Authentication (2FA):
SE-E provide the option to have 2FA when the office user login to SE-E. Application will send the OTP to configured email address of the corresponding user and user shall key in the OTP to login the application in addition to user name and password.
Application Architecture:
SE-E application’s web pages are compiled and source codes cannot be seen directly. It supports multitier architecture means application files, database and hosting server can be independent which provides more security.
Additionally, an exemption notification is thrown via the mode of hosting and firewall application.
The configuration files for the application are encrypted and cannot be seen by unauthorized individuals.
Logon History:
Application has the capability of capturing logon history details irrespective of region, IP address. Logon history report available in SE-E application records logon date & time, IP address and status whether logon success or failed.
Learn More about SEE software link on the button below
