Security Considerations

The following precautions will be integrated into the design to maximize the security of the system:

• All access to the Badge Tracker is limited to computers on the internal network
• Any outside computer must use VPN software to gain access
• The database server will be mounted on an encrypted file system
• The server will contain only the needed components for its duties (e.g. OS, MySQL, WebServer, Badge Tracker executables)
• All traffic to and from the server will be encrypted using industry standard encryption protocols
• Badges and readers will use maximum allowable encryption under the Zigbee protocol
• All access to the system will be logged