Military sites are a prominent example. They provide valuable content in a variety of usages. As some of these sites are to be kept confidential, a broader usage in non-confidential scenarios is difficult to realize often leading to not publishing the complete data set.
By applying sdi.suite securityManager to such a scenario, operators can create a map which includes the complete data set of military sites and publish it as map service to ArcGIS Server. In a second step, operators can activate security enforcement on this service and create access control policies that prohibit access to confidential military sites by using a filter expression. For example, a policy can be configured to prohibit access to those features that have an attribute indicating a level of confidentiality. This policy is in a last step assigned to the appropriate group of users.
When the service is accessed, securityManager enforcement facilities ensure that confidential sites are neither visible nor queryable or otherwise useable. This works with all ArcGIS Server clients including desktop, web and mobile.
With this latest release of securityManager, con terra is now providing a standard product to secure ArcGIS Server Map Services on the level of single geospatial features. This allows operators to define very fine grained access control policies in order to protect data from unauthorized usage, which is complemented by security for other levels, such as complete services, layers/feature types, spatial authorized areas and service functionalities.