CloudBB Security Infrastructure, Practices and Policies
CloudBB, secure pickup system, a comprehensive after school solution, a deeply customizable platform.
We take care of data backups, updates, and security to ensure that you can focus on your business.
With more and more global users, we attach great importance to data security and have developed a comprehensive set of infrastructures, technologies, practices and policies to ensure our customers’ data is most secure.
PartⅠ Physical Security
· 7x24x365 Security
The CloudBB development center in Pleasanton, Toronto and Singapore that host your data are guarded 7 days a week, 24 hours a day, each and every day of the of a year by private security guards.· Premises and Employees
CloudBB servers are guarded safely inside bullet-resistant wall and located inside generic-looking, undisclosed locations with a bullet-resistant walls that make them less likely to be a target of an attack. Our development building’s perimeter is secured by barriers and guard. Both premise and floor are monitored 24x7 with night vision cameras. We select the employees only with the highest clearance. Security guards and smartcard readers are present to authorize individuals before entry. Employees are granted access to the office and data center only after pre-authorized. And we limit access to provide support and troubleshooting on our customers’ behalf. Critical locations in the office are accessible only to authorized individuals.Part Ⅱ Application and Data Security
· Amazon Web Services
CloudBB hosts our applications and data in industry-leading Amazon Web Services, whose data centers have been thoroughly tested for security, availability and business continuity. The infrastructure for databases and application servers is managed and maintained by the cloud service providers. Only when approved by the customer, we access data center information is done by senior management to provide support and maintenance.Part Ⅲ Network Security
Our network security access control policy and infrastructure help protect your data against the sophisticated electronic attacks.
· Secure Communication
We ensure to have a secure connection from our users' browsers to our service by the latest and strong ciphers like AES_CBC/AES_GCM 256 bit/128 bit keys for encryption
· Control and Audit
CloudBB network updates are developed, deployed, monitored and managed by industry-grade firewalls and antivirus software,
to protect our systems from intrusion and to provide active alerts in the event of a threat or an incident.
And firewall logs are stored and reviewed periodically. Also, the audit logs are generated for each remote user session and reviewed.
· Secured and Sliced Down Operating System
All CloudBB applications run inside a secured, sliced-down operating system engineered for security that minimizes vulnerabilities.
· Virus Scanning
Traffic coming into CloudBB Servers is automatically scanned for harmful viruses using state of the art virus scanning protocols which are updated regularly.
Redundancy and Business Continuity
We backup users’ data periodically across multiple servers, in order to help protect the data in the event of hardware failure or disaster.
· Distributed Grid Architecture
We run CloudBB Servers on a distributed grid architecture. That means a server can fail without a noticeable impact on the system or our services.
· Redundancy Compliance
CloudBB configures its servers for power redundancy – from power supply to power delivery.
And our server is connected to you through multiple Tier-1 ISPs. If any one fails or experiences a delay,
you can still reliably get to your applications and information. CloudBB runs on redundant network devices (switches, routers, security gateways)
to avoid any single point of failure at any level on the internal network.
We are backed by N+2 redundant HVAC systems to cool the heat of computing resources generation.
And our customer data is mirrored in a separate geographic location for disaster recovery to ensure your and business continuity purposes.
· Data Backup
Each data center alternately uses the incremental backup and the complete backup to backup the data to
the disk and to clone the security link to the disk document file.
Data centers perform near-real-time data replication between production data center and disaster recovery centers.
· Data Protection
The connection to the CloudBB environment is achieved by using the SSL CA digital certificate of the global professional organization GeoTrust,
which is implemented through SSL 3.0/TLS 1.0. The connection uses 256-bit encryption technology.
At the same time, SHA1 technology is used for authentication and DHE_RSA is used as secret key exchange mechanism,
in order to make sure that users can safely connect to our services through their browsers and use them properly.
In addition, CloudBB will sign data confidentiality agreements with our customers to protect their data security by law.
For more information on CloudBB security certifications and policies, please contact us.