Enterprise Feedback Suite permits optional operation of its admin area in High Security Mode. In this operation mode, in addition to EFS standard security features, supplementary protective measures that meet advanced requirements for web application security are activated. These include:
stricter security criteria for the account names and passwords of staff members using the admin area, EFS Survey Status, EFS Translator Interface or the Org Processor.
tightened brute force mechanism
HTML Escaping
limiting the session to a single IP or an IP address range
reducing the session time
preventing URL manipulations (referer checking)
deactivation of caching in sensitive areas
enforcing HTTP-only cookies
Information
Please mind that the particularly high security level in High Security Mode imposes certain restrictions on usability (e.g. no access to the print version of the questionnaire, additional pop-up warnings in export and download processes). Therefore, the aforementioned features are not included in the standard version of EFS. Even without High Security Mode, EFS fulfills standard security requirements, thus ensuring a proper protection of your data.