A Web Portal presents information from diverse sources in a unified way. Apart from the search engine standard, web portals offer other services such as e-mail, news, stock prices, infotainment, and other features. Portals provide a way for enterprises to provide a consistent look and feel with access control and procedures for multiple applications, which otherwise would have been different entities altogether.
There is an increasing use of the internet by organizations to take advantage of its global reach. However, this introduces the requirement for pristine security controls related to processes and technologies that need to be deployed and securely managed. Our consultants conduct comprehensive security testing of the applications deployed for the Web Portal. All the server-side components of an application are examined. They include, but are not limited to, the following items that support the application:
infySEC's Web Portal Security Service provides a comprehensive framework for assessing the security of the application processes and for reviewing the controls to examine their consistency with the business objectives. To accommodate a wide variety of security requirements, infySEC Portal integrates with other security infrastructure components to provide authentication, authorization, and single sign-on (SSO) capabilities. infySEC provides resources for portal developers, portal administrators, IT Security professionals, and portal developers who need to configure, administer, or use infySEC Portal security features.