你的安全是冰球突破mg平台的首要任务

当您注册使用冰球突破mg平台的产品时,冰球突破mg平台注册以确保您的数据安全.

冰球突破mg平台知道冰球突破mg平台是传播思想的好工具, 并且可以重塑人们分享知识的方式, tell stories, 并激励他们的观众行动起来. We also know that trust is a necessary component for such a tool to work. 

That’s why our commitment to you goes beyond just helping you make your best presentations ever. It goes to protecting the most valuable (and vulnerable) asset of all: your personal information. 

We want you to rest assured knowing our skilled security team uses industry-leading technology to manage all areas of network, system, data, 和应用程序安全性. 没有捷径. 也没有例外. 

Here’s a quick look at the strict principles we live by in order to earn your trust and keep it. 感谢您选择冰球突破mg平台

 
 
 
 
基础设施和网络安全

 
 
 
 

Network ACLs

We follow a microservice architecture in which the different services are loosely coupled and each of them is responsible only for a specific feature or function within the application. 

访问只限于网络级别的微服务. AWS托管的服务和数据库, by default, are not accessible from anywhere; explicit inbound rules must be added manually. 
 


 
 
 
 

变化监测

To ensure that changes potentially affecting the security of the infrastructure are quickly detected, an automated solution was developed by the Security Team that creates alerts in the ticketing system for review. 


 
 
 
 

自动漏洞扫描

Automated black-box vulnerability scans are executed both periodically and in reaction to infrastructural changes in our cloud environment in order to quickly identify potentially vulnerable systems.


第三方渗透测试

至少每年一次, we engage an independent third-party auditor to perform an infrastructure- and application-level penetration test.


负责信息披露程序

由于冰球突破mg平台的公众责任披露计划(http://delnux.com/bug-bounty/), both our infrastructure and application are continuously scanned by vulnerability scanners and enthusiastic security researchers. 


安全事件事件管理(SIEM)

SIEM解决方案收集, processes, 并关联来自云基础设施的详细日志, 从运行在其上的节点, 从应用程序本身. The security team operates as a security operations center and is responsible for monitoring and responding to both internal and external threats. The team responds on an ongoing basis to automated alerts opened by different detection mechanisms (e.g. AWS GuardDuty, AWS Macie, AWS使用日志, 通过Sysdig Falco从基础设施发出威胁检测警报, 基础设施组件的详细安全相关日志, Web安全相关日志, etc.)


Web应用防火墙(WAF)

We use a next-gen web application firewall solution in blocking mode as a first line of defense in front of all customer-facing web traffic.


加密在运输途中

By default, we use TLS encryption between the 冰球突破mg平台 client (either the browser or our desktop/iOS/Android application) and the server. TLS connection is also set up between servers running in different regions. 

Load balancers are used to terminate TLS with automatic issuance of certificates with strong security parameters (2048-bit RSA public keys with SHA256+RSA signature algorithm).

TLS is also supported for all email communications we have with our customers.


加密在休息

Critical customer data (冰球突破mg平台 XMLs and media assets) created after February, “2018”在服务器端采用AES-256加密. The encryption is transparent; keys are managed by our cloud infrastructure provider.


Datacenter

We use a top-tier third-party cloud service provider that is compliant with numerous regulations and privacy standards (EU General Data Protection Regulation, HIPAA, GLBA, HITECH), 并拥有行业认可的认证(SOC, PCI, FedRAMP, ISO and more). 


 
 
 
 
App 保护

安全审查

尽早突出安全隐患, 所有的架构计划都由安全团队审核. 具体情况具体分析, the Security Team also executes threat-modeling exercises in partnership with the engineering teams involved.

As a result, the Security Team interacts on a daily basis with developers and engineers to share security mindset, best practices, 高效的工具.


静态代码分析

We are supporting our secure software development lifecycle with tools that automatically detect code changes against security best practices. 安全团队审查所有标记为潜在风险的代码更改, 跟踪未解决的问题, and communicates with engineers to share security-related knowledge and best practices on a daily basis.


第三方渗透测试

至少每年一次, we engage with an independent third-party auditor company to perform an infrastructure- and application-level penetration test.


负责信息披露程序

由于冰球突破mg平台的公众责任披露计划(http://delnux.com/bug-bounty/), both our infrastructure and application are continuously scanned by vulnerability scanners and enthusiastic security researchers. 


Auditing

冰球突破mg平台有详细的用户活动日志, 包括(但不限于)与安全相关的事件,如登录, 密码更改, 演示创建/删除/修改, 隐私设置, 在应用程序级别更改访问权限.


 
 
 
 
产品安全

共享权限和数据隐私

在创建演示文稿之后, you can protect who sees it by specifically adding collaborators or generating a view link that can be sent to anyone you choose. You can also make your presentation available for the entire world to see by changing its 隐私设置.

欲了解更多信息,请访问:


身份验证和凭据存储

冰球突破mg平台 supports email and password-based authentication along with third-party authentications like Facebook和谷歌. 密码从不以明文形式存储.


加密在运输途中

By default, we use TLS encryption between the 冰球突破mg平台 client (either the browser or our desktop/iOS/Android application) and the server. TLS connection is also set up between servers running in different regions. 

Load balancers are used to terminate TLS with automatic issuance of certificates with strong security parameters (2048-bit RSA public keys with SHA256+RSA signature algorithm).

TLS也支持冰球突破mg平台与您的所有电子邮件通信.


 
 
 
 
Compliance

SOC 2二类安全报告

冰球突破mg平台成功地经历了独立, external, third-party audit and obtained a SOC 2二类安全报告 for 冰球突破mg平台. The report is available upon request to 冰球突破mg平台 Business subscribers who sign a non-disclosure agreement. 欲了解更多信息,请 冰球突破mg平台的销售团队.


隐私和数据保护

你可以阅读冰球突破mg平台的 隐私政策 在线查询,了解更多详情 冰球突破mg平台 and GDPR, and CCPA 在冰球突破mg平台的知识库.

请查看冰球突破mg平台的隐私白皮书 冰球突破mg平台的销售团队.


 
 
 
 
额外的资源

安全白皮书


隐私白皮书