Secure Instances & Firewall:
Whole software is deployed on Secure Instances of Cloud where we have used proper firewalls to monitor and balance the traffic and remove malicious requests to server.
Our servers are highly configured to block the DoS and other attacks to make the data safe.
MyClassCampus configures its cloud servers for power redundancy - from power supply to power delivery.
Customer data is mirrored in a separate geographic location for Disaster Recovery and Business Continuity purposes.
SSH keys are a pair of crystallographic keys that can be used to authenticate to an SSH server as an alternative to password-based logins. A private and public key pair are created prior to authentication. The private key is kept secret and secure by the user. Setting up SSH key authentication allows you to disable password-based authentication. SSH keys generally have many more bits of data than a password, meaning that there are significantly more possible combinations that an attacker would have to run through. Many SSH key algorithms are considered uncrackable by modern computing hardware simply because they would require too much time to run through possible matches.
Vulnerability assessment and Penetration testing done on software and mobile app to eliminate top OWASP vulnerabilities and ensure to minimize the risk. NIST guided standard tools are used and along with that, proper manual Security testing techniques are used and all the security patches were made.
All data transmission to MyClassCampus services are encrypted using SSL protocols, and we use certificates issued by SHA 256 based CA ensuring that our users have a secure connection from their browsers to our service.
Only employees with the highest clearance have access to our data management system where also they can access only selected information necessary to provide support to any institution.
Audits are regularly performed and the whole process is reviewed by management.
This document was last updated on August 24, 2018.