Public and private cloud
This article lists frequently asked questions related to IT, security, and operations of Appspace public and private cloud.
FAQ: Public Cloud
What security protocol is used in Appspace?
Appspace uses the TLS (Transport Layer Security) protocol. In addition, and in line with industry standards, we have removed support for SSL (Secure Sockets Layer).
Is user data encrypted on Public Cloud?
Yes. We have implemented TLS 1.1 and higher with 256-bit encryption for data protection while in transit across the Internet.
Who has access to my data in Public Cloud?
Public Cloud data is segmented at the logical level between multitenancy accounts. Only a restricted group of Appspace Cloud Operations engineers, with justified and documented reason for accessing the cloud instances would be able to have access as part of support requirements. In addition, all access is audited.
What security measures are in place for Public Cloud?
Appspace employs a number of measures to safeguard the security of your Public Cloud, these include;
Physical Security
For datacenter security refer to: https://cloud.google.com/security/
People and Access
- A restricted group of Appspace Cloud Operations engineers, with audited access to Public Cloud instances.
- Firewall permissions prevent management of Public Cloud instances from outside of our datacenter or support facilities.
Backups
- Frequent backups are taken of the Public Cloud instance; these are stored within the local datacenter and offsite.
- All backup data is encrypted during transmission and at rest.
Privacy
- Refer to Appspace Privacy Policy.
- For datacenter compliance refer to https://cloud.google.com/security/compliance
What back-up processes are in place with Public Cloud?
Frequent backups are taken of the Public Cloud instance; these are stored within the local datacenter and offsite. All backup data is encrypted during transmission and at rest.
What ports are enabled in Public Cloud?
Both HTTP and HTTPS (Ports 80 & 443) are required for base Appspace functionality. Also refer to Ports Used By Appspace.
What SLA is in place for Public Cloud?
See Appspace Service Level Agreement.
Can I use Active Directory to access Public Cloud?
This is currently unsupported but is projected as a future enhancement.
FAQ: Private Cloud
How quickly can my Private Cloud be operational?
Typically within two business days from Appspace receiving the order.
What level of access to I get to my Private Cloud?
Users have unrestricted access to the application; i.e. Appspace.
Who has access to my Private Cloud data?
A restricted group of Appspace Cloud Operations engineers, with justified and documented reason for accessing the Private Cloud instances. In addition, all access is audited.
Does my Private Cloud come TLS enabled?
By default, Private Cloud comes TLS enabled; this certificate is bound to our domain e.g. https://companyx.cloud.appspace.com.
What security measures are in place for my Private Cloud?
Appspace employs a number of measures to safeguard the security of your Private Cloud, these include;
Physical Security
For datacenter security refer to: https://cloud.google.com/security/
People and Access
- A restricted group of Appspace Cloud Operations engineers, with audited access to Private Cloud instances.
- Firewall permissions prevent management of Private Cloud instances from outside of our datacenter or support facilities.
Backups
- Frequent backups are taken of the Private Cloud instance; these are stored within the local datacenter and offsite.
- All backup data is encrypted during transmission and at rest.
Privacy
- Refer to Appspace Privacy Policy.
- For datacenter compliance refer to https://cloud.google.com/security/compliance
Can I use a custom domain with my Private Cloud?
Yes. Private Cloud instances can be mapped to a custom domain, e.g. https://appspace.companyx.com.
Customers who wish to use a custom domain are required to provide the appropriate TLS key and certificate.
What back-up processes are in place with my Private Cloud?
Frequent backups are taken of the Private Cloud instance; these are stored within the local datacenter and offsite. All backup data is encrypted during transmission and at rest.
What HA (High Availability) options do I have with my Private Cloud?
The Appspace Cloud Operations team handles HA and disaster recovery options for Private Clouds. Details are not publicly available.
When do software updates/patches get deployed to my Private Cloud?
Private Cloud instances are patched within 30 days of Public Cloud instances being updated.
What ports are enabled in my Private Cloud?
Both HTTP and HTTPS (Ports 80 & 443) are required for base Appspace functionality. Also refer to Ports Used By Appspace.
What SLA is in place for Private Cloud?
See Appspace Service Level Agreement.
Can I use Active Directory to access Private Cloud?
Yes. Appspace supports SAML-based Single Sign On (SSO), which allows for users to authenticate using their Active Directory based ldP.
For detailed information on security improvements, please refer to Security changelog.