var val=''; var list = ''; var num = 0; var hilites = ''; //hilites += '
'; hilites += ' '; var set = new Array(); set[0] = 'Value'; set[1] = 'With no console port and/or console level access — PAR is not open to any host admin attacks, OS, database or other system level modifications '; set[2] = 'With an embedded hardware firewall PCI card, the PAR appliance is protected against external network based attacks. The firewall also provides additional auditing.'; set[3] = 'All passwords stored either for auto-login or as part of the optional PPM module are encrypted using RSA B-Safe, AES256.'; set[4] = 'The entire hard drive of the PAR appliance is encrypted using GuardianEdge Hard Disk Encryption (AES-256).'; set[5] = 'User connections are secured via https/SSLv3. Initial certificate is signed by e-DMZ and can be replaced with customer specific certificate. User proxy connection is via SSH. Target sessions proxy’s are via the most secure native protocol — in most cases this will be SSH. '; set[6] = 'Communication between the role-based web application and the underlying database only allow stored procedures to be called from the application. No ad-hoc SQL is allowed. Authentication checks are done on each stored procedure call.'; set[7] = 'Segregation of duties is enforced through the Role Based Access Control (RBAC) designed into the application.'; var linx = new Array(); linx[0] = 'Enhancement'; linx[1] = 'No Console and/or Console Access. Only access is via associated “role based” secure web interface(s).'; linx[2] = 'Embedded Hardware Firewall'; linx[3] = 'Encryption for Stored Passwords'; linx[4] = 'Full Hard Drive Encryption'; linx[5] = 'Secure Communication'; linx[6] = 'Database Security'; linx[7] = 'Application Security'; list += ""; for(var i=1;i"; list += ""; //if(i==1) { list += ""; } list += ""; } list += "
"+linx[0]+":"+set[0]+":
"+val+""+hilites+"
"; document.write(list);