Foray ADAMS® Bridge allows Foray ADAMS® Web to interact with the user's computer. It manages exports and processing via 3rd party applications. This article covers the security and secure deployment of Foray ADAMS® Bridge.

Distribution

The application is distributed as an MSI from our corporate website https://foray.com or optionally from a server internal to your network.

Privileges

Users do not need elevated privileges to install Foray ADAMS® Bridge unless specifically required by your environment.

Foray ADAMS® Bridge does not require elevated privileges to run.

Security

Foray ADAMS® Bridge is Authenticode signed by “Foray Technologies, LLC.” so that it can't be modified or tampered with.

Communication with the server is over HTTPS keeping data transmitted private.

Trusted Publishers

By adding the code-signing (Authenticode) certificate used to sign our MSI installer into the Trusted Publishers certificate store on client machines, you can ensure that Windows recognizes our application as coming from a trusted source. This prevents unnecessary security prompts and allows users to install the MSI without requiring elevated privileges beyond those necessary for a standard user application installation.

In practice, this means distributing the certificate to client computers using Group Policy, so that end users are not required to manually trust or import certificates. Certificates can be deployed either to the Trusted Root Certification Authorities (to establish chain of trust) and/or to the Trusted Publishers store (to specifically allow trusted installation of signed MSI packages).

References:

• Distribute certificates to client computers by using Group Policy

Related articles