Security Configuration Considerations on the FICO Analytic Cloud
Xpress Executor operates in a secure configuration when deployed on the FICO Analytic Cloud. This secure configuration enforces a number of restrictions:
- Solver algorithms are limited to 4 threads.
- Module parameters can only be set in the model itself.
- The python3 Mosel module ("python3.dso") is not available on the FICO Analytic Cloud.
-
mmjobs: routinesconnectanddetachare disabled. mmhttp: routinestartsrvis disabled.-
mmhttp: outgoing requests to IP addresses and domains in the FICO Analytic Cloud are disabled. mmodbc: connection strings must be of the formDSN=<dsn>or use the integrated 'sqlite' driver.-
mosjvm: Java classes will execute under a security manager to prevent access to files outside the Mosel work directory, starting sub-processes, accessing databases or network resources; For more, see the section Use in Mosel Restricted Mode of the Mosel to Java Module reference manual.
|
Note: These restrictions are in addition to the default rules:
|
- NoExec (no system calls or interaction with external native code)
- NoReadNoWriteWDOnly (file system access restricted to the current working directory only)
© 2001-2024 Fair Isaac Corporation. All rights reserved. This documentation is the property of Fair Isaac Corporation (“FICO”). Receipt or possession of this documentation does not convey rights to disclose, reproduce, make derivative works, use, or allow others to use it except solely for internal evaluation purposes to determine whether to purchase a license to the software described in this documentation, or as otherwise set forth in a written software license agreement between you and FICO (or a FICO affiliate). Use of this documentation and the software described in it must conform strictly to the foregoing permitted uses, and no other use is permitted.