NEHANET Corporation provides a multi-level security and applications hosting infrastructure for the NEHANET websites to give you peace of mind regarding accessing your application and keeping your data secure.
Use of the NEHANET service is subject to the terms and conditions of the customer’s subscription agreement with NEHANET. NEHANET may modify its security infrastructure and/or this security statement from time to time.
The NEHANET software systems is hosted at Rackspace, a Managed Hosting Provider who provides:
All the hosting infrastructure and servers are collocated at a hosting facility in Texas which provides 24-hour physical security, strictly monitored access to all data centers using key card protocols, bio metric scanning protocols and continuous interior and exterior surveillance. Access is limited to data center personnel only without exception and all data center employees undergo thorough background security checks before being employed. Please click here to read more.
High Availability Collocation:
The collocation facility provides specific SLAs for 100% availability of the network, critical infrastructure system (including power and HVAC) and functioning of all hardware components and replacement of any failed component at all times, excluding scheduled maintenance.
Rackspace went through a SSAE16 Type II SOC1, SOC2 (Security and Availability Only), and SOC3 audits covering all data center facilities globally to certify that they have the processes and safeguards in place to protect the application and data. Please click here to read more.
In addition, the hosting provider has Safe Harbor certification that it provides “adequate” privacy protection by the standard of the European Commission’s Directive on Data Protection. In addition, NEHANET takes several steps to ensure that your applications and data are secure and accessible to you at all times.
All systems are protected by firewall systems that only allow access to NEHANET designated entry points and prevent any access to any other system resources. The NEHANET machines are behind NEHANET- dedicated firewalls in isolated sub nets. Logical access to Rackspace is only possible thru a limited set of NEHANET machines.
You can choose to procure a SSL security certificate and provide it to NEHANET to ensure that all your traffic and data is being fully protected with your own certificate. The lock icon in the browser indicates that data is encrypted and protected from access while in transit.
NEHANET uses a shared-server hosting architecture where multiple client applications are hosted on shared machines. Hosting can be either multi-tenant or each application runs on its own web server and in its own dedicated application address. Hence, requests for SSL encryption and other web server specific options can be easily accommodated.
User Authentication and Security:
Users need to sign on based on username and passwords. Users are associated with roles, regions, business units and companies, and the system uses this access control mechanism to restrict the view for a particular end-user based on his or her specific role, region, business unit and company for further security. In addition, each user session is tracked separately and the system architecture prevents one user from accessing data that is in another user’s view. Referral based user authentication can be configured so that only users coming from well-defined Intranets are allowed access to the system. Similarly, single-sign on from your Intranet/application can also be configured if needed.
In addition to the hardware and network availability measures in place, the systems are monitored for up time 24/7 and restarted automatically in the rare case of an application failure.
Data Accessibility and Backup:
Your data is available to you at all times, to export to excel spreadsheets. You can enable or disable this functionality for specific users by role. In addition, the systems are backed up every night and the backups are archived on a Weekly Full and Daily Differential basis for a 2 week retention period. These backups can be restored to bring your system back online to a previous version if ever required.