Successful realization of WebSSL solutions in Willi Betz Logistic
Tuesday, 24 June 2008 11:15
Willi Betz Logistic is the main logistic company of many stores and hypermarkets in the country. The high loading is the reason for pursuit of better organization and synchrony in the loading and downloading activities in the depots of the logistic company. Especially important for the good organization is the development of informational system – web portal which can serve the different suppliers and give them opportunity for reservation on time intervals according to the sizes of the packages.The challenge
The expected huge number of users of the system is premise for usage of the global network Internet as transfer environment. This puts the topic of the day to be the question for security of the whole system for unauthorized access and also form server’s overruns with DDoS attacks. With this task are entrusted the engineers form EFellows Company which offer and integrate solution based on the latest technologies placed in last generation firewalls from Cisco Systems combined with open-source technologies for inspection of the web content.
Realization of the project
The application for reserving time for loading and downloading work is based on already approve organizational platform, realized on the basis of Windows Server 2008 Web Edition and IIS 7.0. Because the application is working with the centralized dada base of the company and can be reached by the customers in the corporative network its direct publishing in Internet is not good option. For secure communication between outside counteragents of the company and the informational system are used few protective and independent one from another mechanisms.
Used technologies
In first place is developed secured http session (https) to the Cisco ASA device which terminates the TLS (Transport Layer Security) crypting, make authentication and basic filtration of the traffic. After successful authentication (which is realized from special solution for single authentication (Single Sign On) from the beginning of the customer request till its successful transportation to the informational system) the client is automatically redirected to the open source based application proxy which is inspecting the traffic on level 7 from OS model (Application Layer) which tracks anomaly in the protocol, interruption in the headers, surpassing the preliminary given limitations, eristic algorithms, pro active protection and others. If the inspected traffic is “clean” is redirected towards the real informational system in the server farm of the company. For the end customer this whole process is hidden, because of the used system for single authentication on the entrance, which carries the customer identification information to the application in the end of the chain.
Results
Thus realized the solution offers flexibility, reliability and productivity, allowing simultaneously serving of many counteragent and safety transfer of information from point to point.
The capacity of Willi Betz Logistic for receiving of request from suppliers has raised significantly without compromising the security of the information and the access to the corporative network and without delay in serving every single counteragent. This solution can be scaled and can serve continuously growing number of requests in case that the market demands this in future. This decision is suitable for different activities both in the logistic and transport area and in many other economical sectors.
