cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

We are happy to announce the new Windchill Customization board! Learn more.

Does anyone have additional information regarding Windchill Mobile? Looking for IT security info...

Go to solution
janis_king
9-Granite
9-Granite
‎Jul 27, 2015 05:10 PM
‎Jul 27, 2015 05:10 PM

Does anyone have additional information regarding Windchill Mobile? Looking for IT security info...

We are looking at setting up Windchill Mobile. Our IT Security is looking for additional documentation regarding encryption of data, etc.

Labels:
0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
BineshKumar1
12-Amethyst
12-Amethyst
(To:janis_king)
‎Jul 27, 2015 10:49 PM
‎Jul 27, 2015 10:49 PM

Windchill Mobile uses HTTP/HTTPS connection to connect to server. So from a security perspective, all the measures you take to secure your Windchill for general use should still be applicable

  1. Encrypted Traffic through HTTPS - Use SSL/TLS for all the traffic. If you are using a self signed certificate(even AD trusted) then, you need to install the the  certificate on all the iPads.
  2. Hardening the server - Deploy Apache hardening techniques.- stop Apache from transmitting versions, disable server signature and directory browsing. Use LDAPs and FTPs
  3. Update the server with latest SUPs/CPSs
  4. Apart from this IOS offers a lot of security features for IT teams. You can also use MDM solutions to secure the data in rest.
  5. Windchill has built in XSS and CSRF protection

The app works decent even with iOS 8.4 ...remember the latest update for the app was back in 2012. So not sure about the roadmap of this product.

Thanks

Binesh

Barry Wehmiller

View solution in original post

Notify Moderator
1 REPLY 1
BineshKumar1
12-Amethyst
12-Amethyst
(To:janis_king)
‎Jul 27, 2015 10:49 PM
‎Jul 27, 2015 10:49 PM

Windchill Mobile uses HTTP/HTTPS connection to connect to server. So from a security perspective, all the measures you take to secure your Windchill for general use should still be applicable

  1. Encrypted Traffic through HTTPS - Use SSL/TLS for all the traffic. If you are using a self signed certificate(even AD trusted) then, you need to install the the  certificate on all the iPads.
  2. Hardening the server - Deploy Apache hardening techniques.- stop Apache from transmitting versions, disable server signature and directory browsing. Use LDAPs and FTPs
  3. Update the server with latest SUPs/CPSs
  4. Apart from this IOS offers a lot of security features for IT teams. You can also use MDM solutions to secure the data in rest.
  5. Windchill has built in XSS and CSRF protection

The app works decent even with iOS 8.4 ...remember the latest update for the app was back in 2012. So not sure about the roadmap of this product.

Thanks

Binesh

Barry Wehmiller

Notify Moderator
Top Tags