Web Bytes Xilnex Framework version 3.0

 
PROJECT ID
C030
ASSURANCE LEVEL
EAL1
Security Target (ST)
 
Certification Report (CR)
 
PRODUCT NAME AND VERSION
Web Bytes Xilnex Framework version 3.0
PRODUCT TYPE
Distribution and synchronization platform
PRODUCT SPONSOR / DEVELOPER

Web Bytes Sdn Bhd

PRODUCT SPONSOR / DEVELOPER CONTACT DETAILS

Ooi Boon-Sheng

Unit 1-2-33, Kompleks Mayang Mall,
Jalan Mayang Pasir 1,
11950 Bayan Baru,
Pulau Pinang MALAYSIA

URL: http://www.webbytes.com.my
Email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Phone:+ 6012 472 9615
Fax:+ 604 611 0162

Web Bytes Xilnex Framework Version 3.0 is a distribution and synchronization platform which distributes subscribed applications to multiple clients as well performs data synchronisation between all the clients in the same group.

The TOE comprises of two primary components as follows:

  • Client Software. The client software that installs directly on each user's PC which operates the daily process and update based on the user activities.
  • Server Software. The server software that extends client software with secure communication, identification and authentication, and data synchronization.

The security functions that the TOE provides include the following:

  • Secure Transmission – All communications between the server and the client is through an SSL channel. It protects the user data from disclosure and modification.
  • Access control – The TOE allows users to launch only the applications they subscribed to as well as accessing the database. The TOE will check the user ID and their organization ID to ensure the applications that the user is allowed to run.
  • Identification and Authentication – Users will have to present their credentials to the server for identification and authentication before the user is allowed to launch the applications and access the user data at the backend and at the local cache.
  • Encryption – Username and passwords are always hashed when they are being stored into the database and during authentication.
  • Management – The TOE contains various management functions to ensure efficient and secure management of the TOE. The TOE maintains two roles, users and administrator, to ensure that the functions are restricted to only the TOE administrator.