The document discusses security features of Bitrix Site Manager software including:
1) Security is a priority throughout development and testing with measures like access control and event logging.
2) Features like a web application firewall, one-time passwords, and activity control help protect against attacks.
3) An intrusion log and IP address controls monitor for suspicious activity and restrict access.
4) Updates and audits help maintain a high level of security over time.
2. Site. Portal. Image. Reputation. Your web site is a part of the Corporate Infrastructure. More than 50% of attacks are done through the Web . Corporate site hacks hit the reputation and image of a company. What is more, the loss of data and client information leads to sheer material losses . The more solid and famous the name and products of a company, the more substantial can be the risks and losses caused by a corporate site hack. Which to choose?
3.
4.
5.
6.
7. One-time Password Technology (OTP) The concept of one-time passwords empowers the standard authorization scheme and significantly reinforces web project security. The one-time password system requires a physical hardware token (device) (e.g., Aladdin eToken PASS) or special OTP software. What OTP gives you? Confidence that only a user to whom a token was issued can authorize on the site. Password interception loses meaning in this case, as a password * can be used only once. A token is a hardware physical device that generates unique passwords only when a token button is being clicked. It means that a token owner is unable to tell the password to a third party to allow them authorize as well. * the password = your password + unique numerical combination
8.
9.
10.
11. IP-based Control Panel Pages This type of protection strictly regulates secure networks from which the users are allowed to access Control Panel. All you have to do is specify the legal IP addresses (or a range). No need to worry about not adding yourself to this list: the system will check your IP automatically. What effect would this protection produce? Any XSS/CSS attacks become ineffective, interception of authorization data – absolutely useless.
12.
13.
14.
15. Under Development In the nearest future Transmission channel encryption using SSL Recommendations on configuration Update monitor
16. Permanent Updates Audit Bitrix has assigned a treaty of permanent update security audits with Positive Technologies. Each time a new set of updates is released through the SiteUpdate system, minute security work is done by the Positive Technologies company. Thanks to this work, the level of product security is always high .
19. Download the Free 30-Day Trial: http:// www.b itrixsoft.com/products/cms/ Test Online: http:// www.b itrixsoft.com/products/cms/
20. USA Toll Free Number (US only) +1-888-5BITRIX (+1-888-524-8749) Telephone Number: +1.703.740.8301 Postal address 901 N. Pitt str, Suite 325 Alexandria, VA 22314 Sales Department: [email_address] ; [email_address] Web Site : http:// www.bitrixsoft.com Contact Information