Security at EasySignage | Digital Signage

Security at EasySignage | Digital Signage

Infrastructure

EasySignage has partnered with Google Cloud to deliver a secure, stable and globally available system, taking advantage of the same secure-by-design infrastructure, built-in protection, and global network that Google uses to protect your information, identities, applications, and devices.

GCP

We Rely on GCP to protect sensitive workloads while achieving and maintaining compliance with complex regulatory requirements, frameworks, and guidelines. Google Cloud’s industry-leading security, third-party audits and certifications

ISO/IEC 27017 SOC 2

PCI DSS CSA STAR

For an additional security layer, we have also integrated with Cloudflare for enterprise security protection.

Comprehensive DDoS Protection

Always-on DDoS protection for all web assets powered by the intelligence harnessed from Cloudflare’s always-learning global network. Cloudflare DDoS protection works in tandem with our cloud web application firewall (WAF), Bot Management, and other L3/4 security services to protect assets from cyber threats of all kinds.

Web Application Firewall (WAP)

WAF enables protection against malicious attacks that aim to exploit vulnerabilities including SQLi, XSS and more, by simply turning on the OWASP Core Ruleset. To quickly protect against new and zero-day vulnerabilities, toggle to turn on Cloudflare’s Managed Ruleset. As the vulnerability landscape changes quickly, Managed Rulesets are updated regularly by Cloudflare to provide fast and seamless protection against the latest attack vectors.

HTTPS/SSL

Communications between all EasySignage component are done over an encrypted and secure connection. This is particularly important when transmitting sensitive data, such as your login details and securing connections between signage players and EasySignage central services.

Authentication/ Authorization

Relying on Google Cloud Platform, all digital signage players will automatically be authenticated and provided with a unique temporary token that will be used to connect to EasySignage services. Using this token, GCP will ensure that each player will only access the data it’s authorized to access and no other permissions are given to other parts of the system. So even if this token is breached, hackers will not be able to access any sensitive areas of the system and incapable of publishing or reading any data.

Billing and Payments

EasySignage has partnered with Stripe billing and payment gateway, all payment information including your cards details is handled directly by Stripe and not by EasySignage, we don’t store your billing details anywhere on EasySignage system.

For more details about Stripe security measure, please refer to the below page:

Security at Stripe.

Start using Digital Signage today

Sign up today and get (forever free) digital signage, check our website https://easysignage.com.