It is well known that one of the key criteria that people are looking for when selecting a platform for mobile and web development is security. Providing data security in mobile and web applications is a requirement for any business. While enterprise level security is a top requirement, app developers may not think about securing mobile apps until the end of development. Development platforms that include a built-in security framework can make it easier to integrate security into mobile apps.
In the following article we outline how Alpha Anywhere has baked security into its development and deployment environment and why it is one of the important differentiators when comparing Alpha Anywhere to other options.When it comes to security. Alpha Anywhere has you covered with authentication, authorization, encryption and device management - giving you enterprise-class data protection and complete administrative control while still providing an excellent user experience.
Mobile and Web App Login AuthenticationOn the authentication side - Alpha has a full role-based integrated authentication system woven directly into the product - with controls over password strengths, expirations,
and other policies. And Alpha's Integrated Authentication can be used with LDAP, OAuth, and Microsoft's Active Directory, allowing for single sign on - so your users won't need to remember multiple passwords or keep logging in as they move from system to system. And to assure your data stays safe on route, Alpha Supports SSL encryption and HMAC message authentication code standards - Plus Alpha Software remains vigilant in alerting our partners and providing security updates as new threats and vulnerabilities in these standards are uncovered.
Device Level Data Encryption and WipingAt the device level, data can be encrypted before it's stored, and with Apperian integration, an IT department can disable an application and remove it's sensitive
data when a mobile device is lost or stolen - or when an employee leaves the company and takes their device with them.
Secure Data AuthorizationOn the authorization side - all incoming server requests are first pass through the Alpha Security framework - which, after authenticating the user's identity, checks to see if the authenticated user has permission to see the data they are requesting. If the user is either unauthenticated or unauthorized the server will either ignore the request or send back just the data that the authenticated user is allowed to see.
Permissions and RestrictionsWith Alpha Anywhere, you have complete control as to which groups of users can see particular, screens, forms, menus and reports. You can even assign permissions
to individual fields - so an employee directory could hide, for example, an employee's social security number unless the authenticated user was a member of the HR group who needed to see that information.
And Alpha Anywhere automatically restricts new pages, reports, and components, as a safeguard to protect developers from accidentally leaking sensitive data as your application changes or grows.