Download
1 / 4
50 likes | 85 Views
Learn how to secure healthcare sensitive data through an n-tier application on an internet-facing portal. Explore how to enhance the Authentication Process during Web Service Calls at the Application Level using token flow over the network. Discover an efficient solution involving encrypted tokens, cache verification, and database interaction, all approved by Cigna and Aetna security specialists.
E N D
MITP 458Application Layer Security By Techjocks
Health Care -Data Security Problem ? • How to presented Healthcare sensitive data via n-tier Application on internet facing Portal? • Need to secure the Authentication Process of user/password during a Web Service Call at Application Level
Solution • Before any Web Service call is invoked it will extract an encrypted token, decrypt it and verify that username and hashed password against the cache sitting on the web service server, if it is not there or expired then it will ask the database. • Application architecture approved by Cigna and Aetna security specialists. • This type of Message level security was implemented in days. It is implemented via Policy based configuration files and its functionality is invoked in the application code with only 2 extra lines of code.
