The following mechanisms control security of the Spotfire® Enterprise Runtime for R - Server Edition (a/k/a the TERR™ service) and prevent users from running malicious scripts on the server.

• Restricted execution mode (REX).
• TERR engine in Docker containerization.
• Script trust and access control.

Only users in the Spotfire license group Script Author can create and mark Spotfire Enterprise Runtime for R scripts as trusted. For other users to run the scripts, the scripts must be trusted (through the Manage Trust mechanism in Spotfire). Trusted scripts run in an unrestricted execution environment (no REX or container) unless the Spotfire Enterprise Runtime for R - Server Edition enforces all scripts to be run in restricted mode. Untrusted scripts always run in REX mode or in a container.