A Look at Secure Code Environment Customizations
The Vectera Plus contains the ability to establish a Secure Code Environment (SCE), allowing you to securely load and run a custom application using your HSM. This blog covers types of custom command functionality and SCE security measures.
Custom Command Applications
Futurex offers a robust API with wide-ranging commands. For organizations desiring additional functionality, the SCE lets your organization expand these API commands directly. Alternatively, organizations without the desire to alter Futurex code can rely on Futurex to develop the new functionality through a custom development initiative. Futurex has many years of experience deploying customer-specific modifications and expansions of our existing command set.
Within the SCE, your organization can provide custom API extensions. For example, your organization may combine three commands so that a single API request prompts a response containing the combined information of three different commands. Another example is adding custom command names, so instead of referring to commands by the Futurex-specified names, your organization can prompt commands using custom and organizationally-specific substitute names. Although not intended for every organization, these sample customizations demonstrate the extensibility of an SCE.
Robust Security through Signature Validation
A trusted CA signs your SCE before it ever reaches the Vectera Plus. Every time files are uploaded, it verifies this signature, and, without a valid signature, the SCE cannot be accessed. Since only your organization has access to the signature, only your organization can access the code within the SCE. Once this verification has occurred transparently to the user, your organization can access the SCE through a secure web portal at a designated IP address.
To discuss the specifics of how a Secure Code Environment could integrate with your organization’s existing infrastructure, contact one of our Solutions Architects.