ONU is designed with security as a top priority. ONU's core infrastructure is hosted using Amazon's AWS virtual cloud service. This enables ONU to secure, scale-up and deploy our services rapidly and reliably.


Physical and Environmental

AWS’s world-class, highly secure data centers utilize state-of-the art electronic surveillance and multi-factor access control systems. Data centers are staffed 24x7 by trained security guards, and access is authorized strictly on a least privileged basis. Environmental systems are designed to minimize the impact of disruptions to operations.


Network and Infrastructure

AWS's security provides industry-leading features and processes. Here are a few features being utilized:

  • Dedicated firewalls to help block unauthorized system access not only from the public but also between the applications and database

  • Unique users and restricted system access provided by AWS Identity and Access Management

  • Encrypted data at rest for all ONU data

  • Monitoring of distributed denial of service (DDoS) attacks, port scanning and other common network security issues


Click here for more details about AWS security including specific details about database services used at ONU (RDS and S3)


Communication

All data exchanged with ONU is transmitted over SSL. The only direct access point to ONU data is via the ONU API, a REST based web service API providing secured, programmatic access to catalog information.


Every API transaction must provide a valid security auth-token in order to be completed. The auth-token will be obtained with a username and password matching an active user account. Passwords are filtered from our logs and are one-way encrypted in the database. ONU will use the provided auth-token to insure the user has the appropriate permission for the transaction they are attempting.


Employee Access

No ONU employee will ever access your data unless required to for support reasons. Access to servers and databases is managed with AWS Identity and Access Management, ensuring appropriate individual and group access including auditability.


Secure Design Principles

ONU's development process follows secure software development best practices, which include formal design reviews and completion of a risk assessment.


Questions

Please contact ONU Support