Is Kinetic from a browser really the way they want us to go in the future? Are they planning to ditch the desktop app completely? How can this possibly be better? Can anyone put my mind at ease here?
I am no security expert. But I have all the same concerns as calvin from his post. We just don’t trust users in browsers, ever. You all make good arguments that the desktop app is no more secure than the browser version. I guess I have to trust the experts here.
Will our browsers be storing any epicor data? For example, browsers often have an autofill form feature. If uesrs type the same part number day after day, will they be allowed to save it in the browser so it autofills? If so, how secure is that autofill data?
We get pen test reports from our MSP. They use Galactic Scan to look for stored credentials and other data. This often returns users sensitive save information from browsers including usernames, passwords, and addresses. Based on this revelation, we advise users not to allow the browser to autosave passwords or other form fields. But we know this is not always followed.
Will Galactic Scan pickup an sensitive information Epicor leaves behind in the browser? I haven’t had them run a test yet, but our next pen test will include this.
We have had issue testing kinetic browser in Egde and Firefox. Every time we had an issue, running it in chrome seemed to resolve it. So they may be the same under the hood, but Kinetic doesn’t think so.
Personally, I tend to be more interested in usability and stability.
why for now I prefer the client but…I think browser based does make a lot of sense and just have faith that by the time 2024 arrives, most of the current kinks will have been worked out.