System Security

System security is built using a component-based extensible model of common security infrastructure that allows for pluggable mechanism to integrate Unwired Server with security providers including the most common LDAP providers— Active Directory, Windows OS, and others—for authentication and authorization.

In addition, the common security infrastructure supports advanced scenarios such as authentication of back-end system interactions, and auditing of security events. Out of the box, Sybase Unwired Platform offers file-based auditing support. If a provider is not supported out of the box, a developer can write a custom provider adapter to plug in to the Unwired Server security layer.

• Authentication
  Unwired Server authenticates users accessing packages using the security provider of the mapped security configuration.
• Role-Based Access Control
  Access to mobile business objects (MBOs) and operations that are mapped to logical roles is authorized by delegating authorization checks to mapped security provider for the package. The given user’s principal is checked for its membership in the corresponding physical role that is mapped to the logical role assigned to the MBO or operation.
• Client Credential Propagation
  Access to an enterprise information system (EIS) can be granted either by using a fixed set of credentials for all users, or by passing in the client user credentials.