Omni-Gen consists of several applications that communicate with each other through web services. In addition, some of the web services are exposed to external systems. Therefore, the access to these web services needs to be secure and the data being transmitted must be encrypted. This document describes at a high level, the approach taken to secure web services using TLS or SSL, enforce strong encryption on the server side, and handle passwords. It also describes steps needed to import a CA-approved SSL certificate or create a self-signed certificate and import them to the keystores and truststores used by the application.
The following diagram illustrates the implementation.