Security

Aurea CRM web does not encrypt the data transferred between client and web server.

To keep the connection secure, the underlying protocols must provide the encryption.

VPN and SSL are solutions used to secure the data transfer.

• Secure Socket Layers (SSL) use a public/private key pair for the encryption. The data is encrypted before it is sent to the client and vice versa. Almost no administration effort is necessary for SSL and it is transparent for the client. To avoid a "man in middle" attack, only distribute the certificates using secure channels. When you design the hardware setup, be aware that SSL consumes a lot of CPU power.
• Virtual Private Networks (VPN) are used to connect private networks over insecure channels (e.g. the internet). The data sent within the network is not encrypted. Only when data is sent over an insecure connection, dedicated routers and/or special software encrypt the data before transmission.

Whether you choose SSL or VPN depends on your need for speed and flexibility.