Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved


Chapter 1 Introduction : Security Considerations

Security Considerations
This section outlines the security issues to consider when mapping out an administration domain. Read this section carefully and take all necessary security precautions if the environment in which you are setting up an administration domain is not secure. Examples of an insecure environment include:
Access to Domain Data
Data storage locations and access methods may differ depending on your domain setup. Note that administration servers, Hawk agents, and deployed applications act as clients to the domain data and access it directly.
Consult the table below to make sure that all connections in the course of data access are secure for your setup.
See Domain Transport Security for recommendations on transport security.
Table 3 Domain Setup
Note: Access to users and roles that are created in the TIBCO Administrator GUI cannot be secured by SSL.
Note: Access to users and roles that are created in the TIBCO Administrator GUI can be secured by securing the database connection.
Domain Transport Security
Two options are available for domain transport: Rendezvous or Enterprise Message Service.
Access to the TIBCO Administrator GUI
The TIBCO Administrator GUI enables you to access and manipulate sensitive domain data and activity, including user and deployment management. When you access the administration server using the TIBCO Administrator GUI, all information is transmitted over the HTTP protocol by default. This is not secure when you access the TIBCO Administrator GUI from an insecure subnet or the Internet.
You can secure your access to the TIBCO Administrator GUI by enabling HTTPS in TIBCO Domain Utility. See TIBCO Runtime Agent Domain Utility User’s Guide for instructions.
Deployed Applications
The following table makes recommendations on different application deployment options. When an application is deployed, the deployment operation uses the domain transport. When the application is running, it accesses application data using the transport option you select at the time of deployment. See the table below for recommendations on the tranvsport options for application data access.
You can select HTTPS as a transport option for application data if you enable HTTPS in TIBCO Domain Utility. See TIBCO Runtime Agent Domain Utility User’s Guide for instructions.
Note: Enterprise Message Service requires that applications are deployed as Local Application Data.
Domain Password Policy
See Password Policy for more information.
Administration Server Shutdown String
While you can shutdown the administration server remotely via the shutdown port, you should define a shutdown string to protect the shutdown port. This shutdown string is not considered to be a password and is not governed by the password policy. However, it is best to specify a string that can pass the restrictive policy (see Stopping the Administration Server in TIBCO Administrator User’s Guide for more information).

Copyright © TIBCO Software Inc. All Rights Reserved
Copyright © TIBCO Software Inc. All Rights Reserved