skip to main content
Close Icon We use cookies to improve your website experience.  To learn about our use of cookies and how you can manage your cookie settings, please see our Cookie Policy.  By continuing to use the website, you consent to our use of cookies.
Global Search Configuration

Introduction

Force.com, Salesforce’s platform-as-a-service (PaaS) offering, is evolving into an application, data, and people integration hub. The foundation of its hub ambitions is its multilayered flexible approach to user, application, and data security, with a particularly granular approach to data security.

Highlights

  • In a public cloud context you cannot rely only on cloud service provider assurances. Encrypt and back up your data on premise using a mix of Force.com and third-party technology.

Features and Benefits

  • Gain a short, concise, but nonetheless detailed overview of Force.com's security capabilities.
  • Receive recommendations on how to make the best of Force.com's security features.

Key questions answered

  • Which security features does Force.com make available to users? How do these relate to one another?
  • What are the strengths and limitations of Force.com's security features?

Table of contents

Summary

  • Catalyst
  • Ovum view
  • Key messages

Recommendations

  • Recommendations for enterprises
  • Recommendations for vendors

Combine multiple security layers to secure Force.com implementations

  • Like Salesforce, combine security layers
  • Force.com is reliable but do backup regularly
  • Ask about Salesforce’s data center security
  • Keep in mind data location issues and work around them
  • Combine Force.com and third-party technology

Mix multiple access management techniques

  • Use Force.com’s password and login policy management capabilities
  • Leverage Force.com’s SSO capabilities

Carefully manage Force.com’s data access mechanisms

  • A flexible layered design that combines top-down and bottom-up security
  • A design that can quickly become complex, so needs careful planning and management
  • Leverage Force.com’s monitoring facilities

Start with profiles and permission sets for data access

  • Use profiles to grant access then tweak with permission sets
  • Manage carefully and consider all possible consequences

Add bottom-up object, field, and record-level data access settings

  • Start with object and field permissions then adjust
  • Combine field-level and page layouts security
  • Define record-type security via profiles and permission sets
  • Define record-level security via organization-wide sharing settings
  • Refine record-level security via hierarchies
  • Refine record-level security via automatic and manual sharing rules
  • Carefully combine permission sets and sharing rules
  • Apply sharing rules to groups, besides role hierarchies
  • If nothing works you can always define sharing programmatically
  • Keep the processing impact of sharing rules in mind

Appendix

  • Further reading
  • Author

Recommended Articles

  • Service Provider Markets, Consumer & Entertainment Services,...

    MWC 2018 Highlights

    By Ronan De Renesse 27 Feb 2018

    Over 20 of our senior Ovum analysts and consultants attended this year’s Mobile World Congress in Barcelona at the end of February. In between meetings, briefings and presentations, our analyst team were blogging and tweeting about key developments, trends and rumors. Have a look through our daily MWC 2018 Highlights to find out what happened.

    Topics 5G AI IoT Cloud Payments SDN/NFV Smart home

  • Enterprise Decision Maker, Enterprise IT Strategy and Select...

    2017 Trends to Watch: Big Data

    By Tony Baer 21 Nov 2016

    The breakout use case for big data will be fast data. The Internet of Things (IoT) is increasing the urgency for enterprises to embrace real-time streaming analytics, as use cases from mobile devices and sensors become compelling to a wide range of industry sectors.

    Topics Big data and analytics IoT

  • Consumer & Entertainment Services

    US pay TV: Is it facing an existential threat?

    By Adam Thomas 28 Mar 2018

    With US pay TV having endured the worst year in its history, thoughts have inevitably turned to the future. The likelihood remains that the immediate future will remain highly uncomfortable for everyone except the scaled multinational digital platforms.

;

Have any questions? Speak to a Specialist

Europe, Middle East & Africa team - +44 (0) 207 017 7700


Asia-Pacific team - +61 (0)3 960 16700

US team - +1 646 957 8878

+44 (0) 207 551 9047 - Operational from 09.00 - 17.00 UK time

You can also contact your named/allocated Client Services Executive using their direct dial.
PR enquiries - Call us at +44 7770704398 or email us at pr@ovum.com

Contact marketing - 
marketingdepartment@ovum.com

Already an Ovum client? Login to the Knowledge Center now