System Security Assurance
Project Portal is secured using Secure Socket Layer (SSL) technology which encrypts all transmissions to and from the server through the internet using a 128/256-bit encryption algorithm. Passwords created and distributed with user accounts are also stored in an 256 bit encrypted format.
System Redundancy and Backup
System and data redundancy and backup are achieved through technological and protocol means. Project Portal servers utilize triplicate internet and power back up to protect from power and internet trunk outages.
At the server level, each piece of data uploaded or saved in the Project Portal system are physically saved to two separate hard drives through the use of a hard ware RAID (Redundant Array of Independent Disks) solution. This protects the system from hard drive failure through its redundancy. Should a hard drive fail, the system will continue operating normally and the failure would not be evident to end users. Project Portal system administrators however, would be alerted of the hard drive failure and the failed hard drive would be replaced thereby reestablishing hard disk redundancy.
The Project Portal system is also backed up in its entirety on a nightly basis. Project Portal system administrators have tested restoring these nightly backups to ensure that the system could be restored in the event of a full operating system failure or “crash” or database corruption.
User Privilege Management
The security in Project Portal is completely user-based in that different users will see and have access to a different set of Modules, controls and contents based on their specific privileges. Project Portal uses a multi-layered privileges scheme whereby users are given a Global User Level or system-wide privilege being either:
- Administrative User
- General User
- Limited User
Administrative Users are able to create, modify or delete users, folders, Project Tables and other Project Portal components. General Users can see and interact with most of the content however they cannot create, modify or delete content unless explicitly given the rights to do so (such as document upload). Limited users not only cannot create, modify or delete content but then also have limited viewing capabilities in which case they may not be able to see items that many others can see (such as Modules, document folders, tables etc).
In addition to this Global User Level, each user also has one of the three Module User Levels as they apply to each one of the Modules. For example, a user may be set up as a General User in the system as a whole but as an Administrative User specifically on the Document Management Module so that they have full rights to create and modify folders, subfolders and files.
Finally, Project Portal uses a third privilege scheme called Group Management. This allows Administrative Users to build groups of specific users. Folders or files (for example) can then be locked down to specific groups. Conversely, Group Management can be used to preclude a group of users from seeing something that the rest of the user population can see.