Reflection for the Web 2008 Airlines Edition is terminal emulation software that securely connects browser users to applications on IBM TPF, ALCS, and Unisys® systems commonly used in the airline and travel industries, as well as IBM 3270, IBM 5250, Unisys, and HP hosts. With its strong authentication and encryption capabilities, you can safely deliver fully functioning host applications across the public Internet. More specifically, with Reflection’s secure token authorization feature, you can add an extra layer of protection to your host applications and integrate them into your modern security infrastructure.
With Reflection for the Web 2008 Airlines Edition, you can:
- Secure all host sessions with secure token authorization and AES or 3DES encryption over SSL/TLS and SSH.
- Connects to any major GDS including Amadeus, Worldspan, Apollo\Galileo, EDS Shares, and Sabre as well as any MATIP-based reservation system.
- Authenticate users with Directory Services, X.509 smart cards, Kerberos, and eTrust SiteMinder.
- Use your existing LDAP users and groups to control user authorization to sensitive data and resources.
- Meet regulatory requirements, such as PCI, Sarbanes-Oxley, Gramm-Leach-Bliley, FIPS, HIPPA, and European Data Directive.
- Provide standards-based security for business applications and file transfers.
- Maximize existing technologies—including X.509 certificates, Online Certificate Status Protocol (OCSP), and Certificate Revocation Lists (CRL)—via Reflection for the Web’s Public Key Infrastructure (PKI) support.
- Ensure cross-platform flexibility with client-side support for all major web browsers, including Internet Explorer, Netscape, Opera, Mozilla Firefox, and Safari.
- Use simplified sign-on for easier user access and password management.
- Integrate host applications with IBM, BEA, and eTrust SiteMinder portals.
- The Airlines Printer component supports not only shared printers and host devices, but also specialized printers used for ticket generation, baggage tags, boarding passes, and sophisticated, bi-directional devices, such as ATB2 printers, over a wide variety of protocols.
Diagram 1: How Reflection for the Web Works
- User connects to the Reflection Management Server.
- User authenticates to a directory server (LDAP/Active Directory)—optional.
- Directory server provides user and group identify.
- Reflection Management Server sends emulation session to authenticated client.
- Authenticated user connects to the host.
Diagram 2: How Reflection for the Web Secures Host Sessions
- User connects to the Reflection Management Server.
- User authenticates to a directory server (LDAP/Active Directory)—optional.
- Directory server provides user and group identify.
- Reflection Management Server sends emulation session and digitally signed authorization token to the client.
- Emulation applet makes SSL/TLS connection to Security Proxy Server and sends signed token to Security Proxy Server.
- Security Proxy Server validates token’s digital signature, then sends decrypted datastream to the host:port specified in token. Optional: datastream can be encrypted all the way to the host.
Learn More
Datasheet
Technical Notes
- 2345 New Features in Reflection for the Web 2008
- 2111 Frequently Asked Questions: Reflection for the Web 2008
- 2386 Using Templates in Reflection for the Web 2008
- 1807 Using the Personalization Feature in Reflection for the Web
- 1786 Connecting Through a Firewall Using Reflection for the Web