<< Click to Display Table of Contents >> Navigation:  Help > Cloud/SaaS Topics > SaaS/Cloud - IT Compliance > Security

Which technical measures for the host protection are used?

•Host Firewall,

•Regular integrity checks,

•Host-based intrusion detection.

 

Does the host firewall run with only the minimum ports necessary to support the services within the virtual instance?

•Yes (only http and https). Only the ports needed for operation of RMS are open (80 and 443).

 

What security is setup?

•TLS 1.2 for encrypted browser connection,

•HTTP2 for the http protocol version 2,

•Activated HSTS for the specific key agreement protocols that gives assurances the session keys will not be compromised even if the private key of the server is compromised,

•A-Rating (www.ssllabs.com) security setting rating,

•A-Rating for HTTP-Headers (https://observatory.mozilla.org) security rating.