Security Requirements
SeeVoice service is configured to be run under standard security policies, applied to common user. Operation cycle doesn't require root user privileges. Management access to OS is performed using standard Remote Desktop Client (RSA Security's RC4 cipher with 56- or 128-bit key) or third-party tools (e.g. Famatech's Radmin).
Most of management operations are performed using web-based interface, which is accessed through standard SSL connection with authentication. Access restriction policy based on IP address is also applied.
All incoming requests are checked for conformance to predefined XML schema before actual processing occurs. Invalid requests are logged.
The following information is logged and available for review using web-based interface:
o authentication operations: login, logout, login failure;
o service operations: start, stop, connection pool management, avatar gallery management;
o content processing (variable level of detailing);
o request failures;
Additionally alert notifications on request failure and login failure may be configured.
Service requires Microsoft Internet Information Service to be installed and configured according to vendor recommendations.