eGuard

摘要

Players on security sector have the forming of the situation picture as the fundamental requirement for successful on scene commanding and in addition to traditional communications device the goal can be supported by using different types of technical instruments. Information produced by different type of device can be transferred into centralized server environment on network layer referenced to OSI-model. A source device, for example IP camera, initiates an IP-based connection while a destination system is an application server that is able to receive incoming encrypted data flow through secured communication tunnel. To secure the data containers produced by different tenants(like independent authors, countries and companies) an essential requirement for the SaaS-application is to be multitenant aware on database, configuration and data warehouse levels hence tenants are required to be isolated from each other. As a potential solution we represent a product called eGuard that would be based on open source products as well as selected parts of commercial products with the goal to offer a functional IP-based entirety for actors on security sector. The application will be planned as a multitenant solution which means an environment where all tenants are isolated from each other by defining access controls lists for all tenants and information flows. Outbound traffic will be controlled by using default tenant-based security groups that have access to outbound data flows and on the other hand when needed it is possible to establish temporary or permanent cross-tenant security groups to offer cross-tenant situational picture when necessary.