Skip to content

Security

Which technical measures for the host protection are used?

  • Host Firewall,
  • Regular integrity checks,
  • Host-based intrusion detection.

Does the host firewall run with only the minimum ports necessary to support the services within the virtual instance?

  • Yes (only http and https). Only the ports needed for operation of RMS are open (80 and 443).

What security is setup?

  • TLS 1.2 for encrypted browser connection,
  • HTTP2 for the http protocol version 2,
  • Activated HSTS for the specific key agreement protocols that gives assurances the session keys will not be compromised even if the private key of the server is compromised,
  • A-Rating (www.ssllabs.com) security setting rating,
  • A-Rating for HTTP-Headers (https://observatory.mozilla.org) security rating.