Introduction

INBOOKS Document Solution Software is a robust document management and A/P Automation system that will allow organizations to store documents electronically for short- and long-term retention. The benefits are numerous. Security, customer responsiveness, disaster recovery and document efficiency will have noticeable improvements and costs in the near and long term will be greatly reduced. Because of the critical nature of documents stored by our customers, this document outlines our commitment to its members for compliance.

 

Overview

Threats to invalid access to customer data can originate externally to the organization or internally. INFODYNAMICS has designed our software, teamed up with your environmental security to ensure not only the highest level of performance and reliability but also an environment that is protected to the industries’ highest standards.

 

The primary role INFODYNAMICS will play in enforcing a secure environment:

• Configuration of security options available directly in the software.

• Education on best practices for environmental security.

• Assisting in security configuration in SQL Server, Web services and client applications.

 

Application Security

INBOOKS uses role-based security to grant/restrict access by folder to documents for the appropriate users. Along with role-based security, an additional layer of security is provided to restrict access to document types that may be stored in an accessible location but not permitted to be accessed by certain roles. This multi-layer approach, combined with specific access functions provides the ability to confidently secure corporate documents.

 

Auditing is extensive in INBOOKS and provides reporting by document location, user, date range with reporting on functions ranging from access (view/print) to sharing (email/fax) modification (document, location or attributes) and addition or deletion.

 

Database Security

• SQL Server Security.

• Dedicated system users to prevent direct end user access.

• Runs in its own instance per tenant for both security and performance.

 

File Access

• Can be secured using encryption.

• Dedicated system account is used for proxy-based document access keeping repository access secure.

 

Client-Side

• User authentication.

• INBOOKS Database authentication.

• Active Directory authentication.

• Advanced document level security.

• Departmental management for limited user account control.

• Role based security on both access and document actions.

• User session time-outs.

• Full and automatic document auditing including document edits, views, actions and distribution.

 

Web Services

• Uses database or active directory authentication.

• OAUTH 2.0.

• IIS security configuration.

• Role based security.

• User session time-outs.

• Configured with SSL encryption.