Overview
ActiveNav Cloud is deployed in a scalable multi-tenant environment, using Microsoft's industry-leading Azure cloud security services, including:
- Azure Active Directory B2C for end-user authentication, authorization, and enforcement of tenant isolation.
- Azure Active Directory uses a robust, least-privilege approach for all operational authentication and role-based access control.
- Azure Key Vault for storage of all secrets and keys.
- Azure DDoS Protection ensures continuous availability, resilience, detection, and mitigation of attacks.
- Azure Security Center and Azure Defender provide a holistic view of the security posture of the deployed system, with its constantly evolving, intelligent threat detection and security advisor engine.
- Azure SQL Transparent Data Encryption and Azure Disk Encryption encrypt all persisted data and TLS 1.2 or higher for all data in transit.
ActiveNav Cloud is a flexible multi-tenant environment with options for further physical isolation of customer data. Customer Tenants are provisioned in a secure, regionally located, multi-tenant SaaS cloud instance, with premium options for further data isolation.
Security Testing and Quality Profile
Veracode SAST (Static Analysis) and SCA (Software Composition Analysis) products are used to analyze the full ActiveNav Cloud codebase in a continuous fashion, enabling any serious issues or vulnerabilities flagged to be swiftly addressed.
Availability and Threat Detection
Azure DDoS Protection is used to ensure continuous availability, resilience, detection, and mitigation of attacks.