decs e-business for the world of defence
Text only | Site map     
  Advanced search  
decs Secure eBusiness for the world of Defence
Security

Security

DECS Security Services 

Best of breed physical security systems are based on a layered approach: This is the analogy of the "onion skin" in depth of the security applied to the DECS System.

Picture of the

DECS complies with this model and supports its electronic equivalent. Security counter-measures reflect the latest best-practice and DECS is subject to regular reviews and penetration testing by independent accreditors to identify any weak points.

Some of the security devices used within the DECS architecture are:

  • Firewalls (the first external barriers) followed by hardware and software devices. These restrict access to all but those authorised to access the system.
  • Intrusion Detection System - constantly monitors all barriers and connections to identify attacks. 
  • Virus protection devices and mail sweepers - report back to the security monitoring system, enabling us to build up a picture of possible attackers and details whenever inconsistencies occur. 
  • Public Key Infrastructure (PKI) - For DECS services which provide users with access over the Internet using web browsers, successful entry to DECS not only requires a valid logon / password but also possession of the corresponding valid digital key; in the absence of either, entry is automatically refused.
  • Authorisation Service - on successful authentication, an access control list (ACL) is built, based on the services to which the user is entitled. The ACL determines which services a user can access and denies access to all others. Having accessed a particular e-business service, the session will be subject to the security controls native to that application. 
     

Back to top
Useful links
About DECS | DECS Services | DECS Registration | Help & Support | ICS Catalogues | News & Events
Privacy Statement | Terms & Conditions
UK Ministry of Defence and Capgemini