Catia V5 R21 Zip File Download _verified_

| Area | Controls | |------|----------| | | OAuth 2.0 + OpenID Connect; short‑lived access tokens (≤ 15 min). | | Authorization | RBAC – role CATIA‑R21‑Download ; enforced at API gateway and service layer. | | Transport Security | TLS 1.3 with HSTS; OCSP stapling. | | Data‑at‑Rest | ZIP stored encrypted (AES‑256) with bucket‑level KMS key. | | Digital Signature | CMS/PKCS#7 using RSA‑4096 corporate signing certificate. | | Encryption (optional) | OpenPGP (RFC 4880) – public key uploaded by user; encrypted ZIP size grows ~2 % due to overhead. | | Integrity | SHA‑256 checksum posted to UI and API; client can verify after download. | | Audit Trail | Immutable write‑once log; exported nightly to CSV for external audit. | | Rate Limiting / Abuse | Token bucket per user; 429 response on exceed. | | Legal | license.txt inside ZIP contains the Dassault Systèmes EULA excerpt required for redistribution; download page includes a “I agree” checkbox that records consent. | | GDPR / Data Residency | No personal data inside the ZIP; logs contain user ID (pseudonymized for analytics). | | Vulnerability Management | Dependency scanning (Snyk) on CI; quarterly pen‑test on download endpoint. |