Difference between revisions of "ISO:Cryptography Controls and Usage"
Jump to navigation
Jump to search
(Created page with "== Cryptography Controls and Usage== Your data and its security are as important to Hornbill as it is to you and we therefore encrypt all data in transit and where possible a...") |
|||
| (4 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
| + | This document can now be found at its new location in the [https://docs.hornbill.com/hornbill-cloud/iso/cryptography-controls-and-usage/ Hornbill Document Library]. | ||
| + | |||
| + | [[file:hornbill-document-library.png|Hornbill Cloud|link=https://docs.hornbill.com/hornbill-cloud/iso/cryptography-controls-and-usage/]] | ||
| + | |||
| + | <!-- | ||
== Cryptography Controls and Usage== | == Cryptography Controls and Usage== | ||
| − | Your data and its security are as important to Hornbill as it is to you and we therefore encrypt all data in transit and | + | Your data and its security are as important to Hornbill as it is to you and we therefore encrypt all data in transit and at rest using a minimum of 256 bit. |
All cryptographic tools used are sourced from legitimate sources and thus compliant with all relevant UK regulations related to cryptography. All encryption techniques utilise a minimum of AES 256 bit encryption and longer where possible. | All cryptographic tools used are sourced from legitimate sources and thus compliant with all relevant UK regulations related to cryptography. All encryption techniques utilise a minimum of AES 256 bit encryption and longer where possible. | ||
| Line 7: | Line 12: | ||
For external transport we support and recommend secure protocols when providing integration (for example POP3S\IMAPS)and all web applications are served over HTTPS (All checked weekly via SSL Labs and others to ensure no known vulnerabilities) | For external transport we support and recommend secure protocols when providing integration (for example POP3S\IMAPS)and all web applications are served over HTTPS (All checked weekly via SSL Labs and others to ensure no known vulnerabilities) | ||
| + | |||
| + | A record of all encrypted data is kept and the encryption used reviewed regular to ensure that it is still fit for purpose. | ||
| + | |||
| + | All physical media that leaves Hornbill controlled sites is encrypted and records kept detailing sender, Recipient, proof of receipt, encryption used and dates. | ||
== Internal Policy== | == Internal Policy== | ||
| − | All Laptops, removable hard-drives and | + | All Disks, Laptops, removable hard-drives and USB memory devices are encrypted inline with the above conditions. All traffic that leaves the cloud network must be encrypted. All customer data stored at rest (DB\File Backups etc) must be contained within encrypted volumne and any data pushed to off site backups must be encrypted in transit and at rest on target. |
| + | --> | ||
| + | [[Category:HDOC]] | ||
| + | <!-- hornbill-cloud/iso/cryptography-controls-and-usage --> | ||
Latest revision as of 17:29, 11 September 2023
This document can now be found at its new location in the Hornbill Document Library.
