Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
security [2019_10_15 20:48] – [7 Restrict by IP Address] steven | security [2020_05_28 06:45] – dan | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Security ====== | ====== Security ====== | ||
+ | == Updated on May 27, 2020 == | ||
SME provides a SaaS and hybrid on-premises multi-cloud content management solution called the Enterprise File Fabric. | SME provides a SaaS and hybrid on-premises multi-cloud content management solution called the Enterprise File Fabric. | ||
Line 27: | Line 28: | ||
[[https:// | [[https:// | ||
+ | |||
===== 3 Encryption Algorithm ===== | ===== 3 Encryption Algorithm ===== | ||
Line 39: | Line 41: | ||
See also [[https:// | See also [[https:// | ||
+ | |||
===== 4 Authentication Security ===== | ===== 4 Authentication Security ===== | ||
Line 76: | Line 79: | ||
===== 8 Audit Security ===== | ===== 8 Audit Security ===== | ||
- | |||
{{:/ | {{:/ | ||
Line 112: | Line 114: | ||
* **Disaster Recovery** - The [[foreverfile|ForeverFile™ archive]] is a backup, disaster recovery and ransomware protection feature that continuously protects data, wherever it is stored. For each primary storage provider that is being protected, a separate secondary or Backup provider is configured. For maximum availability the backup cloud should be located in another data center. It could also be with different cloud vendor, storage technology or tier. | * **Disaster Recovery** - The [[foreverfile|ForeverFile™ archive]] is a backup, disaster recovery and ransomware protection feature that continuously protects data, wherever it is stored. For each primary storage provider that is being protected, a separate secondary or Backup provider is configured. For maximum availability the backup cloud should be located in another data center. It could also be with different cloud vendor, storage technology or tier. | ||
- | ===== 13 Cyber Essentials ===== | + | ===== 13 Website Security ===== |
+ | |||
+ | {{ : | ||
+ | |||
+ | Our public websites is scanned regularly through [[https:// | ||
+ | |||
+ | We follow best practices in developing secure software, as mandated by GDPR, protecting for example against injection attacks, cross-site request forgery and session hijacking. We perform a third-party vulnerability code scan for each release. | ||
+ | |||
+ | These are the formats of the cookies are used. < | ||
+ | |||
+ | ^ Cookie ^ Type ^ What for ^ Retention ^ | ||
+ | | PHPSESSID | Functional | Unique ID of session | Session | | ||
+ | | %%< | ||
+ | | autologin | Functional | Token for remember me feature | 14 days | | ||
+ | | %%< | ||
+ | |||
+ | ===== 14 Cyber Essentials ===== | ||
Storage Made Easy is [[https:// | Storage Made Easy is [[https:// | ||
Line 118: | Line 136: | ||
It was developed in collaboration with industry partners, including the Information Security Forum (ISF), the Information Assurance for Small and Medium Enterprises Consortium (IASME) and the British Standards Institution (BSI), and is endorsed by the UK Government. | It was developed in collaboration with industry partners, including the Information Security Forum (ISF), the Information Assurance for Small and Medium Enterprises Consortium (IASME) and the British Standards Institution (BSI), and is endorsed by the UK Government. | ||
- | ===== 14 London Office of Regional CyberSecurity Advancement (LORCA) ===== | + | ===== 15 London Office of Regional CyberSecurity Advancement (LORCA) ===== |
Storage Made Easy [[https:// | Storage Made Easy [[https:// |