IT security environment of the product

DriveRadar® APPredict is a cloud-based web app. The intuitive web front end is optimized for mobile devices.

The web app’s software architecture is modular, which has the following advantages:

  • You can manage multiple instances in the multi-tenant model.
  • In the long term, you can integrate further sensor systems in addition to Schaeffler OPTIME.

The defined security mechanisms ensure the following protection:

  • Protected access to instance-specific user and sensor data
  • Safe processing and storage
  • Strict separation between individual customer instances

The software consists of 2 main components:

  • APPredict.Web: The web front end and thus the central user interface through which you access sensor data and manage your instances, sensor groups, and systems.
  • APPredict.Instance: The instance that serves as an interface to connected sensor systems. APPredict.Instance stores and processes instance-specific user and sensor data.

All instances are separated from each other, ensuring secure and multi-tenant data management. The multi-tenant model ensures the independent management of each customer instance. The data of individual customers remains isolated and inaccessible to third parties.

A comprehensive authorization concept regulates access to data, configurations, and functions. You can centrally manage user rights so that only authorized persons can make changes to sensor configurations or system parameters. The authorization concept ensures both data protection and safe use of the software.

To prevent unauthorized access and manipulation, all communication takes place exclusively via protected interfaces and connections that are continuously encrypted according to common best practices.

The following forms of communication exist:

  • Internal communication:
    • between APPredict.Web and APPredict.Instance
  • External communication:
    • between software and connected sensor systems
    • between software and mobile devices

Internal communication between APPredict.Web and APPredict.Instance takes place exclusively via secure, non-publicly accessible interfaces. When you access an instance, APPredict.Web sends an authorized request to the corresponding APPredict.Instance, which then provides the requested data.

This architecture ensures that sensor data can be processed efficiently, stored in a protected manner, and used specifically by authorized users. At the same time, the clear separation between instances ensures a high degree of data security and confidentiality.