The following security controls are in place for the iSpaniel applications.

Security

Network Security

  • All communications to iSpaniel application servers is protected using SSL/TLS to ensure all communications between endpoint devices and the iSpaniel servers are encrypted.
  • Network access to the iSpaniel application servers is limited to allow only access to the web interface.  Management access to the servers is only allowed from specific iSpaniel premises.

Host Security

  • iSpaniel web servers are hosted by AWS.  Details of AWS compliance statements, and physical and logical security controls can be found here.
  • All iSpaniel application servers are configured with appropriate host based security controls.
  • Access to iSpaniel application server management interfaces is strictly limited only to the people who need it.
  • All live iSpaniel application servers are hosted within the EU.

Database Security

  • iSpaniel utilises MongoDB Atlas in AWS for its database infrastructure, which means all communications between the application and database layer are encrypted, and the data is encrypted at rest.  Details on MongoDB Atlas security architecture can be found here.
  • Access to the database is restricted to a whitelist of IP addresses that contain only the iSpaniel application servers, and from specific iSpaniel premises.
  • iSpaniel user password data stored in the database is protected using a salted SHA-512 hash, meaning in the unlikely event of a breach, the clear text password data cannot be obtained.
  • All iSpaniel application data is hosted within the EU.

Monitoring

  • The following elements of the iSpaniel infrastructure are monitored for operational and security events:
    • iSpaniel application server operating system logs
    • Spaniel application server performance data
    • iSpaniel application logs
    • AWS security logs

Availability

  • The iSpaniel application servers are hosted in AWS and are afforded the resilience that this natively provides.  We are in the process of updating our AWS architecture to provide automatic scaling and self healing to provide the best possible level of availability and performance to our customers.
  • The iSpaniel database is hosted in MongoDB Atlas which provides a high level of availability as standard.  Further details on this can be found here

Integrity

  • iSpaniel application data is hosted in MongoDB Atlas which provides continuous backups which means that data is always safe and can be restored to any point in time.  More details on this can be found here.
  • The iSpaniel application servers are designed to be stateless, meaning that any server can be lost without any loss of data.