There is more to data security than just encryption

To a very large extent, the security of data transfer depends on how well the data is protected against misuse and unauthorized access on its journey through the global networks. This starts with comprehensive roles and rights management to ensure that only authorized users are able to send data and verify the identity of recipients before they access the data and extends through to secure encryption of the data for transfer and the data connections.

OpenDXM GlobalX provides high-performance roles and rights management including fully-integrated two-factor authentication (2FA). This means that when users log in to the data exchange portal, they not only have to enter their user ID and password but also a time-based token that can be generated on any end-user device. The 2FA procedure can be combined without difficulty with established LDAP/AD-based authentication procedures or an external IAM system (Identity Access Management) for single-sign-on (SSO).

OpenDXM GlobalX uses a multilevel encryption concept to provide the highest possible level of data security. Both internal data transfer and transfer via the Internet are always performed via an encrypted HTTPS connection. If, however, someone nevertheless tries to intercept the data, they cannot do anything with it because when it is uploaded to the platform, it is encrypted using public/private key cryptography methods with an encryption strength of up to 4096 bits. Moreover, data that requires particularly stringent protection measures is additionally safeguarded by a separate, individually generated key that is known only to the recipient. The keys can be managed separately from the encrypted data on a server in a country in which the intelligence services do not have the right to demand their disclosure.

A prerequisite for secure data exchange is controlled data management within the company itself, for example by means of a PDM/PLM solution. Only in this way is it possible to ensure that no unauthorized data or incorrect versions leave the company. The next article explains how OpenDXM GlobalX can be integrated in a company’s existing IT infrastructure in order to make data transfer even more secure.