Security

Access Control

Administrators can control account security settings, manage access to cloud services, and easily manage roles to configure user permissions and privileges.

• Enforce minimum password length and password complexity.
• Ensure access lock down for consecutive failed login attempts.
• Enforce cyclical password changes and prevent reuse of expired passwords.
• Manage roles to set permissions and privileges by user.
• Central provisioning and de-provisioning of web applications.

Authentication and Authorization

AppDirect integrates with leading single sign-on (SSO) providers such as Google and Yahoo!. As an identity provider and consumer, AppDirect supports the following leading security protocols:

• SAML 2.0 to enable web-based authentication and authorization scenarios, including SSO.
• OpenID to make it easy and secure for users to sign up and access web accounts with SSO.
• OAuth to ensure secure API authorization in a simple and standard method from desktop and web applications.

Data Encryption

AppDirect uses the latest technology and industry best practices for encrypting data in transit.

• We encrypt transmission of data across open, public networks with Verisign 256-bit SSL certificates.
• We store encryption keys in separate secure locations and frequently rotate them.

Network Protection

The AppDirect network goes through constant monitoring and frequent threat assessments to ensure data protection. We enforce policies to:

• Maintain a firewall at each Internet connection and between any demilitarized zone (DMZ) and the internal network zone.
• Run internal and external network vulnerability scans at least quarterly and after any significant change in the network.
• Use intrusion detection systems and/or intrusion prevention systems to monitor all traffic at the perimeter and at critical points inside of the customer data environment, as well as alert personnel to suspected compromises.

Data Center Security and Availability

AppDirect uses multiple highly secure data centers to host our servers and data with no single point of failure. Specifically, we:

• Use data centers that are SAS 70 Type II, PCI, ISO, and HIPAA compliant.
• Monitor internal resources with warning and critical thresholds configured to alert our 24/7 Support Team of any potential degradation or interruption of service.
• Use N+1 or greater redundancy for all components of essential systems, including regional redundancy.
• Deploy anti-virus software on all systems commonly affected by malicious software.

How Is AppDirect More Secure than Desktop Software?

With AppDirect, none of your or your customers’ data is stored on employee computers. If a laptop crashes or gets lost, damaged, or stolen, all of the data remains completely safe. Data is stored in the cloud and continuously backed up in multiple locations so there’s no single point of failure. Additionally, AppDirect is much more secure than transferring physical data files via email or discs, two practices that put your critical business intelligence at risk. Data is transferred securely using 256-bit encryption, keeping your information protected at all times.