Whitebeam Security...

Whitebeam has been designed from the ground up to support large numbers of clients on a single common infrastructure. To satisfy this target security has to be considered in every aspect of the design. The following list highlights some of the key security aspects of the architecture:

• No write access to the file-system.
• No execute access to the file-system
• File read access is only permitted within the virtual directory tree for the client servicing a request.
• No raw (SQL) access to the underlying database. All access is through templates that abstract the database through a rigorous API calls.
• All template access is scoped by a unique client identifier - preventing unauthorised access to that portion of the database in use by other clients

In addition the choice of Apache means that Whitebeam will run on variants of Unix specially tailored to address the high-security needs of e-business.