Document Retention
Features
Benefits
White Papers
Data Services
Technology
Digital Thread
Architecture
Security
Hosted Security
homeproductstechnologyservice security

Security Model

State-of-the-art Security
NextPage® provides state-of-the-art security for our software service to ensure that your data is never compromised. We understand that security is crucial to you and we consider security a top priority. We spend our time and resources to make sure our security infrastructure protects your information.

Security Measures

In addition to our solid security infrastructure, we also provide:

Experienced, professional engineers and security specialists dedicated to data and systems protection
Continuous deployment of proven, up-to-date security technologies
Ongoing evaluation of emerging security developments and threats
Complete redundancy throughout the infrastructure
Total commitment to a secure, scalable, private, collocated system
SecurityDescription

Physical Security

Our production equipment is collocated in the Greater Salt Lake City, Utah, area at a facility that provides 24-hour physical security, fingerprint and picture identification systems, redundant electrical generators, redundant data center air conditioners, and other backup equipment designed to keep servers continually up and running.

Perimeter Defense

The network perimeter is protected by the latest, industry-leading firewall systems at multiple levels of the service to protect customer data and to ensure only authorized uses of the NextPage service. In addition, NextPage monitors all systems with automated alerting and notification to proactively ensure security throughout our architecture. NextPage contracts with a third party security firm that provides regular security penetration testing and auditing for increased assurance against the latest threats.

Data Encryption

The level of encryption for all encrypted services is 128-bit encryption. Encryption is primarily used for SSL traffic used as part of the service as well as for all VPN connections from the NextPage facilities for remote administration and access. All communications to/from the NextPage corporate facilities are fully encrypted by at least 128-bit encryption.

User Authentication

On first install clients are verified through a secure public and private key interaction. The clients then transfer all data to the NextPage Global Service via SSL over HTTPS.

Application Security

Our application security model completely separates customer data. This security model ensures that a customer will only have access to their data.

Internal Systems Security

Inside of the perimeter firewalls, the systems are safeguarded by network address translation, port redirection, non-routable IP addressing schemes, and more. The specific details of these features are proprietary.

Operating System Security

NextPage has tight operating system-level security by only enabling a minimal number of access points to all production servers. We protect all operating system accounts with strong passwords and other authentication mechanisms. All operating systems are maintained at each vendor's recommended patch levels for security and are hardened by disabling and/or removing any unnecessary users, protocols, and processes.

Database Security

Whenever possible, database access is controlled at the operating system and database connection level for additional security. Access to production databases is restricted to a limited number of points, and each customer’s data is stored in a separate database.

Server Management Security

All data entered into the NextPage Global Service by a customer is owned by that customer. NextPage employees do not have direct access to the production equipment, except where necessary for system management, maintenance, monitoring, and backups. NextPage does not utilize any managed service providers. The systems engineering team provides all system management, maintenance, monitoring, and backups.

Reliability and Backup

All networking components, SSL accelerators, load balancers, Web servers, and application servers are configured in a redundant configuration. All customer data is stored on a database served by a database server cluster for redundancy. All customer data is stored on carrier-class disk storage using a SAN and multiple data paths. All customer data is automatically backed up to a primary tape library on a nightly basis.

Disaster Recovery

NextPage uses multiple levels of data protection to guard against data loss and to aid in rapid recovery in the event of a disaster. All customer data is backed up to disk. One level of disk backup is stored onsite and the other disk backup system is located offsite and is stored on a SAN, which provides additional levels of redundancy and quick recovery features. The disk backup is then backed up to tape, which is regularly sent to an offsite storage provider. The NextPage offsite storage provider houses the tape backups in a secure, fire-proof, granite vault.

© 1999-2008 Licensed Copyright by NextPage, Inc. All rights reserved. Privacy Policy  Site Map