Security

 
 

Any cloud computing / hosted solution MUST meet strict security considerations to protect the client's data.

GeoPortal's "distributed" architecture enables data in the GeoPortal to remain hosted BEHIND YOUR FIREWALL if you don't want to or can't host the data with our service.

Users only see information to which they have been granted access - whether they are using GeoViewer, DataViewer or DocumentViewer or any of the other services and applications in GeoPortal.

Functionality within applications can be defined based on user privileges.

All data are secure, and communications between government clients and our information services are protected.

All components are redundant, ensuring any failure does not affect system performance.

All interactions and machines keep detailed logs.

All data are backed-up and back-ups are stored offsite.

The GeoPortal has gone through a threat risk assessment and security audit to ensure that the hosting environment meets government IT standards and requirements. The solution is certified secure. If clients require an additional assessment it can be arranged.

Our hosting environment is redundant and is co-located at two Peer1 data centres in Toronto and Markham. Peer1 (www.peer1.com) is one of Canada’s largest and most reliable ISPs. Our computing technologies are based on best of class technologies from HP and Cisco. Our high availability solution enables us to support demanding computing requirements.

Some key components include:

  • SQL server dB’s. All dB’s are dynamically encrypted and have strong password protection. Only authorized personnel have access. All data are backed-up nightly and moved to an off-site facility. Even if the databases were to fall in unauthorized hands, the data could not be accessed because of they are fully encrypted.
  • SSL-256 bit encryption of the communications channel between the client browser and our servers ensures all network traffic is encrypted and protected.
  • For desktop ArcGIS users we provide a secure IPSec based VPN connecting their desktops to the hosted ArcGIS servers and ArcSDE GeoDBs.
  • User authentication in client domain, and highly encrypted identity management based on industry standards and best practices.
  • Redundant and secure infrastructure at our hosting facility. No data leave Ontario. This is a high availability solution. We can also provide a live fully redundant secondary data centre for the most demanding solutions.

 
 
Municipal GeoPortal is a service offered by Infrastructure Ontario and SKE Inc. footer