Confidentiality ensures only authorized users see stored and transmitted information. In addition to the documentation included with other applications and hardware components, follow the Primavera Unifier-specific guidance below.
- For data in transit, use SSL/TLS to protect network connections among modules. If you use SSO authentication, ensure you use LDAPS to connect to the directory server.
- For data at rest, refer to the documentation included with the database server for instructions on securing the database.
Unifier Mobile App for iOS: User Identity
If Unifier has been configured to sign in users using single sign-on (SSO), then the Sign In window will not appear on your device screen. In addition:
- Unifier does not capture the user’s username and password.
- The user’s first name, last name, and email address are all stored in Unifier database, but they are not shared with any other applications, including third-party applications.
If Unifier has been configured to sign in users using basic authentication, then the Sign In window will appear on your device screen. In addition:
- Unifier captures the user’s username, password, first name, last name, and email address.
- The user’s username, password, first name, last name, and email address are stored in a shared object that uses encrypted format, and they are not shared with any other applications, including third-party applications.
Security Basics
The term "administrator" or "application administrator" is used to refer to the individual who is responsible for managing the company data and can access that data. This term can also be used for the IT professionals who define roles in the Primavera Unifier application, or the IT professionals who manage company servers. An administrator must be able to:
- Set up Single Sign-On (SSO) and enable multi-factor authentication to minimize the number of passwords that users have to remember and to consolidate risk.
- Educate users on how they can avoid unwittingly helping hackers. One of the best ways an administrator (and security advocates) can help users is by helping them to prevent security breaches.
- Use a VPN to encrypt data being sent over the internet.
- Stay up-to-date about security trends and best practices.
The term "user" or "end-user" is used to refer to the individual who uses the Primavera Unifier application to complete tasks. This term also refers to an individual who signs in to the Primavera Unifier application from an office or job-site to complete tasks. A user must be able to:
- Follow security guidelines created by their companies and the administrators of any network applications they use.
- Use strong passwords. The more random-looking the better. Avoid reusing passwords.
- Learn to recognize phishing. Phishing is when someone disguises an email or some other transmission as a legitimate message in an attempt to get a user to reveal sensitive information. For example, a hacker may send you an email disguised to look like an email from your employer requesting login information. These attacks are becoming more sophisticated, but you can still protect yourself by making sure any emails you receive or websites you visit are legitimate before using them to share sensitive information.