ContolsC01 : Primary DB authentication and schemaC02 : External application user authenticationC03 : One-way SSLC04 : Mutual SSLC05 : IP address restrictionsC06 : Token validation (for Reports-4-U)C07 : Salted SHA-256 hash of user passwordsC08 : Internal user Flash SWF fileC09 : 90-day limit for report dataAssetsA01 : Primary DB credentialsA02 : Sensitive application dataA03 : Session ticketsA04 : Application username and passwordA05 : Application event tablesA06 : Report dataA07 : Coyote Data SFTP credentialsA08 : Reports-4-U REST credentialsA09 : VisiWidget APIA10 : Active Directory username and passwordA11 : Special Flash functionalityA12 : Client certificate for Thick-ClientA13 : Application log file and event dataA14 : Cached reporting dataThreat AgentsTA01 : Unauthorized external userTA02 : Authorized external application userTA03 : Unauthorized internal userTA04 : Authorized internal application userTA05 : Authorized internal system adminTA06 : Authorized internal DB adminTA07 : Authorized developerInternetCorporate LANDMZData CenterLegacy LANHTTPSTCPSFTPSOAP/SSLTCPTCPODBCODBCFiletransferODBCODBCHTTPSHTTPSSOAP/SSLSOAPHTTPSHTTPSSSLMutualSSLReports-4-UCoyote DataBrowserBrowserWebServerWSGatewayVisiWidgetDataWarehouseApplication ServerWS-LegacyLegacySystemReportingDB ServerPrimaryDB ServerSingleSign-onServerThick-ClientSession MgmtSession MgmtJSON/REST-APIWS-APIFTP-DropFlashJavaScriptFlashJavaScriptSession MgmtLogMgmtAdminInterfaceReportingBusinessLogicFlashInterfaceC06C03C03C02C03C02C04C04C05C04C07C01C01C01C09A06A02A03A03C03A03A04A01A04A13A03A13A06A08A02A05A11A09A04A14A12A03A10A10A13A02A03A04A07TA02TA04TA01TA03TA05TA06TA07