Protection of Data

Secure Sockets Layer (SSL) cryptographic protocols provide secure communications for data transfer between the user’s workstation and servers.

Access to facilities within WATSMobile is controlled by the use of a login and password. Varying roles are created within the system provide for:-

• the ability to update defendant or warrant information

• read only permission to defendant or warrant data

• allocation of warrants to enforcement officers

• recording of payments against warrants

• cancellation of warrants

• the addition of notes or warning signals

• uploading of Libra or Fujitsu MCS files

• user and role management

Users can amend their own passwords with the next major revision of the software (Revision Number 3.0) to include a demand that a password contains both upper and lower case characters and at least one digit. Passwords will need to be amended after defined period, this being a system parameter.

WATSMobile also times a user out of the system after a 30-minute period of inactivity.

An additional security feature of the system is the use of I.P Address checking. WATSMobile can detect the I.P address of an incoming log in and check against a table of valid I.P addresses. This validation table can contain single I.P addresses or a range of I.P addresses.

Should an attempt to be made to access the system from an unauthorised I.P address, the user is denied access and an automated email is generated to Specialist Computing Support who then follow the action by a call to the main nominated user contact.

It should be noted that this I.P address checking can only be effectively invoked where Static I.P addresses are generated, which is the case on the Libra Office Automation Network.