MATLAB® Production Server™ uses HTTPS for security. You can configure the security of a server instance to be as broad or specific as required. The instance can simply encrypt the communication channel between it and a client or it can block unauthorized clients from accessing applications.
https | URL that server instance uses for secure connections |
ssl-allowed-clients | MATLAB programs a client can access |
ssl-ciphers | List of cipher suites to use |
ssl-tmp-ec-param | Elliptical curve used in ECDHE ciphers |
ssl-protocols | List of allowed SSL protocols |
ssl-tmp-dh-param | File containing a pregenerated ephemeral DH key |
ssl-verify-peer-mode | Level of client verification the server instance requires |
x509-ca-file-store | File containing the server certificate authority file |
x509-cert-chain | File containing the server certificate chain |
x509-passphrase | File containing the passphrase that decodes the private key |
x509-private-key | File containing the PEM formatted private key |
x509-use-crl | Use the certificate revocation list |
x509-use-system-store | Use the CA store provided by the system |
To enable security, add the following to the server instance’s configuration:
Configure Client Authentication
To ensure that only trusted client applications have access to a server instance, configure the server instance to require client authentication:
Specify Access to MATLAB Programs
By default, server instances allow all clients to access all hosted MATLAB programs.
By default, MATLAB Production Server instances try to use TLSv1.2 to secure connections between client and server.
Improve Startup Time When Security Is Activated
When a server instance is configured to use HTTPS, it generates an ephemeral DH key at startup.