Once you've selected a file from the computer, via the "Add." button and renamed it, you can specify "Solution Options" to add the encryption password. We can easily encrypt our apps using FileMaker's Developer Utilities, a menu option that becomes available when we select advanced Tools from the application's Preferences. Claris requires it when we share our files on their services. We refer to this type of protection as at-rest encryption, and it is critical when we move our apps to the cloud. Just as we safeguard the data that flies through the network, we need to protect the data that sits on our hard drives or our thumb drives from unapproved eyeballs. ![]() FileMaker Server 19.3 has made this process much more manageable by giving us the ability to create a certificate signing request (CSR) right in the Server Admin Console. So get a custom SSL certificate from a provider of choice, install it, and make the required DNS entries to ensure users can access the server using the FQDN. We control all of our FQDN's and the IPs they point to from our domain name system (DNS) server, which offers another level of security. ![]() This anti-spoofing superpower comes from the fact that the SSL certificate is bound to a domain and/or a fully qualified domain name (FQDN), not an Internet Protocol (IP) address. Another important thing an SSL certificate does is make sure that the server's full name is used, thereby ensuring that someone isn't tricking our users into logging into a fake, password-stealing website instead of our server. Encryption on the fly allows the data between the client and the server to be encrypted by the SSL certificate so that some bad actor who is listening in on network traffic can't poach it. There are two powerful reasons to get a custom SSL certificate: encryption-on-the-fly and server spoofing. Unfortunately, several FileMaker technologies, like the Admin API and the Data API, don't work with Claris's default certificate installed. So it's widely available to anyone who has installed FileMaker in the last decade. This default certificate is the same one that has been installed on every FileMaker Server since 2012. But please don't use it for anything other than initial testing. SSL is an Internet security protocol that creates a safe connection between a web server and a web browser. SSL CertificatesĬlaris gives us a default Secure Sockets Layer (SSL) certificate when installing an on-premise version of FileMaker Server. Claris recognizes this and offers several defense features for non-technical and highly technical users alike. There are some very sophisticated techniques out there to secure our databases. To that end, we, as keepers of personal and sensitive data, need to do our best to protect it. Therefore, it's improbable that there will be little to no financial consequence in a ransomware attack. Unfortunately, the Colonial Pipeline outcome is an exception, not the rule. In the age of cryptocurrency, this type of cyber threat is easily facilitated because of the exchange's inherent anonymity and virtual impregnability. A ransomware attack occurs when a hacker hijacks a data source and then requires payment before they'll release it. ![]() We'll also highlight the FileMaker cyber security features that Claris provides to help us defend ourselves against attacks.īefore we get started, let's explain what ransomware is. To that end, let's review some of the ways bad actors find ways to access our FileMaker data. With all the recent ransomware events in the news, it's clear that we need to protect our servers and apps from eyes and ears that aren't our own.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |