Information Security
Ensuring information security requires an integrated approach.
Today, when choosing the basis for automated process control systems, almost all enterprises of the defense industry, energetics, and government agencies set the task to build an information security system that includes organizational and technical solutions for preventing interference with the functioning of the information system. The Ma-3 system is weakly dependent on the chosen platform. Since Ma-3 is multi-platform, it allows you to use its wide functionality on various combinations of operating systems (OS) for both servers and workstations, as well as DBMS. This is especially important for making its use possible at enterprises of Russian defense industry complex, public sector and strategic companies of various industries.
As the OS for the Ma-3 server, Windows Server and Linux are supported. As the OS for the Ma-3 client, Windows, Linux, MacOs are supported. The following commercial DBMSs are supported:
Among open source DBMS, MySQL and PostgreSQL are technically supported. In case of non-commercial DBMS (PostgreSQL) will be used being used for Russia, then the latest versions of such DBMS will be supported. This means, in particular, that, when planning their information security system, customers will be able to fully rely on the use of means provided by platforms known to them. One of the main combinations of “OS – DBMS” for customers with special requirements for information security will be the AstraLinux – PostgreSQL combination.
Features of three-level architecture
Ma-3 system is built using a three-level client-server architecture. Processing of business logic is carried out mainly at the application server level, and partially at the DBMS level (in the case of using stored procedures for mass data processing). The business logic is not processed on the client.
- Client (as an application requiring installation; data collection terminal);
- An application server, which, in addition to the main function, can perform various technical functions (for example, act as a lock management server, license server, load balancer). From a technical point of view, an application server is an instance that processes a certain number of users (usually several dozens), therefore, several (many) instances of application servers can function on one physical or virtual server;
- Repository of compiled business function algorithms: RPO. In the case of using several physical or virtual servers for application servers, it is recommended to use at least one RPO repository for each physical or virtual server to avoid transferring the compiled source code of business functions over the network;
- DBAccess component – for ensuring interaction between the application server and the DBMS. This component provides the ability to use various DBMSs;
- Web server (for example, Apache) – in case of using web clients;
- Broker – allows you to manage client connections in case of poor communication, in particular, with a high response time.
This architecture allows you to use means existing in the system or embed your own means of ensuring information security at various levels.
- Client (as an application requiring installation; data collection terminal);
- Application server, which, in addition to the main function, can perform various technical functions (for example, act as a lock management server, license server, load balancer). From a technical point of view, an application server is an instance that processes a certain number of users (usually several dozens), therefore, several (multiple) instances of application servers can function on one physical or virtual server;
- Repository of compiled business function algorithms: RPO. In the case of using several physical or virtual servers for application servers, it is recommended to use at least one RPO repository for each physical or virtual server so as not to transfer the compiled source code of business functions over the network;
- DBAccess component – for ensuring interaction between the application server and the DBMS. This component provides the ability to use various DBMSs;
- Web server (for example, Apache) – in case of using web clients;
- Broker – allows you to manage client connections in case of poor communication, in particular, with a high response time.
This architecture allows you to use existing in the system or embed your own means of ensuring information security at various levels.
Learn more about the Ma-3:
Telephone: +7 (495) 995-21-30
E-mail: info@national-platform.com