Changes

All n One utilises SunGard's hosting environment in Parkwest business park Dublin. In this environment SunGard use cisco 5510 firewalls for network protection and Cent OS virtual load balancers utilizing TLS negotiation so we can offer TLS 1.2 to users using the latest browsing software and older versions of TLS for legacy software.(IE6 etc.) We also complete vulnerability tests to ensure All n One's cloud security. For additional information on bxps bxp's end to end encryption please view the following link - [[Bxp_-_BER8_SER2_-_End_to_End_encryption_and_High_Availability]]

As the client data we store is held in Sungard's secure Parkwest facility in our database servers. The processes and procedures for SunGard facility entry include a sign in/sign out policy so unauthorised individuals will not be permitted access to our servers. A visit/call to SunGard can only be authorised by four members of our staff. Our data is stored in this secure facility which means we are able to mitigate against tampering, loss, damage or seizure. We also utalize utalise BitLocker encryption on our database servers so client data is encrypted(256-bit key). We are also fully compliant with the Irish data protection act and client data is deleted once it is older then than our back-up storage scope. -

Clients of the service are told to nominate a security champion for our SaaS Service. This member of staff will be able to use enhanced security features to manage their instance of bxp software (All n One's software). With this the client should be able to manage authentication and seperation separation of access control within the interface. The system champion will also be able to run reports on the actions of users on their instance of bxp through the audit trail functionality.[[User_Profiling_-_Start_Here]] . bxp software also provides a means for data protection automation which can be viewed from the following link - [[Data_Protection_and_Data_Retention]]

All n One utalises utilises the latest in TLS technology to provide out our clients with the most secure login possible. By utilizing Google's password strength meter API we also have the ability to reject passwords not considered to be "Best" by Google's standards. We also provide the ability to lock down login attempts to only be successful from a particular IP of range of IP's. In order for All n One to manage our hosted servers we have created a secure encrypted VPN connection with SunGard AS. The office in which the operations team work on bxp software development is also fully secured with the latest intevo security system from Kantech which was installed by ADT. - [[Bxp_-_Ballymount_Security]]