Lua Security Whitepaper - Citrix Ready Marketplace

Transcription

Lua Security Whitepaper - Citrix Ready Marketplace
Instant, Secure and Accountable
Lua Security Whitepaper
Security is Paramount
We know that when you communicate with your team, information security is paramount.
The information discussed, the files circulated, and the decisions made all help your
organization maintain its competitive edge. Major organizations across all industries use Lua
every day to communicate and share files, and we never take that trust for granted. Lua is
an enterprise-grade, mobile first solution that adheres to the highest industry standards for
security at every level. Connect your staff and share information with confidence.
LUA SECURITY WHITEPAPER
1
section one
Lua Security Overview
Lua allows you to securely and instantly message, call and share files with
colleagues from any device. Track account activity, revoke access to files and
remotely lock or wipe data from a lost or stolen device — quickly and easily.
30%
of IT practitioners say
they have no mobile
security features in
place.1
Protection at the app level
Data is segmented at the Network level within Lua; under no
circumstances will it be available to users who have not been
invited into a specific network.
Each device used to access a user account is associated with that
account via the user’s email address.
Upon logging out, all data is removed from the client device.
Administrators can revoke access to individual users, instantly
removing all data from the user’s device.
Allow admins to easily grant and revoke access to conversations
and files.
Protection at the platform level
All connections are 256-bit TLS encrypted, both at rest and in
transit.
A service-oriented architecture allows us to isolate our components
and compartmentalize permissions between them.
The codebase is regularly audited for cross-site scripting, SQL
injection, cross site request forgery, unpatched insecurities
in external libraries and flaws in authentication and session
management.
Regular penetration testing is performed using the same tools
malicious hackers use, so that new vulnerabilities are assessed as
they are discovered.
1. Raytheon Cyber Products, “Security in the New
Security updates for 3rd party components are typically performed
Mobile Eco-System”, 2014
within 24 hours of availability.
LUA SECURITY WHITEPAPER
2
Protection at the facilities level
Lua’s data centers provide state of the art physical security to
our clients. With ISO 27001 certifcation and regular SOC 1 audits,
our physical infrastructure is trusted by Fortune 500 companies,
government agencies and NGOs.
Multiple Availability Zones are used for a high degree of physical
redundancy, mitigating the impact of network outages and
natural disasters.
Lua works to take advantage of new physical security measures as
they become available.
Lua Security Architecture
Storage
Tier
Application
Tier
Encrypted
Volume
Encrypted
Volume
Firewall
TLS
Encrypted
Device
LUA SECURITY WHITEPAPER
3
section two
52%
of IT professionals say
mobile security practices
have been sacrificed
in order to improve
employee productivity.2
Encryption of Data
Lua’s cloud-based services offer 256-bit Transport Layer Security (TLS) encryption
to ensure the privacy of confidential messages and files during transfer and
in storage. Your data is backed up on redundant servers and protected by
geography, people and failsafes, ensuring its availability, no matter what.
Lua also uses industry standard ciphers and protocols to protect your sensitive
data from end to end - at rest and in transit, including the Advanced Encryption
Standard (AES). Lua’s SSD volume is also encrypted at a hardware level. In
addition to our database, all logs and data being passed through our messaging
servers and devices are fully encrypted.
Encryption of Data
Encryption is the process of encoding messages or information in such a
way that only authorized parties can read it. Malicious users may intercept or
monitor data transmitted across unencrypted networks and gain unauthorized
access which jeopardizes the confidentiality of the sensitive data. The secure
transmission of data in transit and at rest relies on both encryption and
authentication − on both the hiding or concealment of the data itself, and on
ensuring that the computers at each end are valid.
Encryption does not of itself prevent interception, but rather denies the message
content to the interceptor. In a traditional encryption scheme, the message or
information, referred to as plaintext, is encrypted using an algorithm, generating
ciphertext that can only be read if decrypted. For technical reasons, an
encryption scheme usually uses a pseudo-random encryption key generated by
the algorithm.
While in principle it may be possible to decrypt a message without possessing
the key, it is almost mathematically improbable and would require extremely
large computational resources, unprecedented technical abilities and a genius
level mathematical skill set. An authorized recipient can easily decrypt the
message with the key provided by the originator to recipients, but not to
unauthorized interceptors.
2. Ponemon Institute, “Corporate Data: A
Protected Asset or a Ticking Time Bomb?”, 2014
LUA SECURITY WHITEPAPER
4
Encryption at Rest
Encrypted data stays encrypted even when access controls such as usernames
and password fail -- meaning all of your Lua data is encrypted while it remains on
the client device. The data also maintains its security while resting on the server
at the hardware level.
Encryption in Transit
Data in transit can be defined as the flow of information over a network, such
work
personal
as the internet or an internal private network. When sensitive data is going
from the client device to a server, 256-bit TLS prevents ‘man in middle’ attacks
(i.e. eavesdropping). The sent data maintains full encryption while in this transit
period, preventing access by unauthorized users.
Lua Encryption Best Practices
More than
one half
of all employees access
business applications
from personally owned
mobile devices.3
Data encryption keys are updated on a regular basis
Encryption keys are stored separately from the data
Periodic auditing of sensitive data
Only store the minimum amount of sensitive data as possible
Regular monitoring of threats
Powerful firewall
What is AES?
Simply put, the Advanced Encryption Standard (AES) is a web tool cipher used to
encrypt and decrypt text using the AES encryption algorithm. Administrators can
chose 128, 192 or 256-bit long key size for encryption and decryption. The result
of the process is downloadable in a text file.
In more technical terms, AES is a symmetric block cipher used by the U.S.
government and major enterprises to protect classified information. It is
implemented in software and hardware throughout the world to encrypt
sensitive data. AES is robust and capable of protecting vital information well into
the next century.
3. Raytheon Cyber Products (see footnote 1)
LUA SECURITY WHITEPAPER
5
AES comprises three block ciphers, AES-128, AES-192 and AES-256. Each cipher
encrypts and decrypts data in blocks of 128 bits using cryptographic keys of 128-,
192- and 256-bits, respectively. Symmetric or secret-key ciphers use the same key
for encrypting and decrypting, so both the sender and the receiver must know
and use the same secret key.
All key lengths are deemed sufficient to protect classified information up to the
“Secret” level with “Top Secret” information requiring either 192- or 256-bit key
lengths. There are 10 rounds for 128-bit keys, 12 rounds for 192-bit keys, and
14 rounds for 256-bit keys -- each round consists of several processing steps
71%
of end users say they have
access to confidential
corporate data that they
should not see. 4
that include substitution, transposition and mixing of the input plaintext and
transform it into the final output of ciphertext.
What is TLS?
TLS is a cryptographic protocol designed to provide communication security
over a network, ensuring privacy between communicating applications and
their users on the internet. When a server and client device communicate, TLS
ensures that no third party may eavesdrop or tamper with any message. TLS
is the successor to the Secure Sockets Layer (SSL). TLS and SSL are most widely
recognized as the protocols that provide secure HTTP (HTTPS) for Internet
transactions between web browsers and web servers.
TLS is composed of two layers: the TLS Record Protocol and the TLS Handshake
Protocol. The TLS Record Protocol provides connection security with some
encryption method such as the AES or Data Encryption Standard (DES). The TLS
Handshake Protocol allows the server and client to authenticate each other and
to negotiate an encryption algorithm and cryptographic keys before data is
exchanged.
In the authentication process, a TLS/SSL client sends a message to a TLS/SSL
server, and the server responds with the information that the server needs
to authenticate itself. The client and server perform an additional exchange
of session keys, and the authentication dialog ends. When authentication is
completed, SSL-secured communication can begin between the server and
the client using the symmetric encryption keys that are established during the
authentication process.
4. Ponemon Institute (see footnote 2)
LUA SECURITY WHITEPAPER
6
TLS Enhancements to SSL
The keyed-Hashing for Message Authentication Code (HMAC) algorithm replaces
the SSL Message Authentication Code (MAC) algorithm. HMAC produces more
secure hashes than the MAC algorithm. The HMAC produces an integrity check
value as the MAC does, but with a hash function construction that makes the
hash much harder to break.
Key Benefits of Using TLS Encryption
Strong authentication, message privacy, and integrity
TLS can help to secure transmitted data using encryption technology. TLS also
authenticates servers and authenticates clients to prove the identities of parties
engaged in secure communication. It also provides data integrity through an integrity
check value. In addition to protecting against data disclosure, the TLS security
protocol can be used to help protect against masquerade attacks, man-in-the-middle
or bucket brigade attacks, rollback attacks, and replay attacks.
Interoperability
TLS/SSL works with most Web browsers and on most operating systems and web
servers, including the Microsoft Windows, UNIX, Novell, Apache, Netscape Enterprise
Server and Sun Solaris. It also is often integrated in news readers, LDAP servers, and a
variety of other applications.
Algorithm flexibility
TLS provides lots of options for the authentication mechanisms, encryption
algorithms and hashing algorithms that are used during the secure session.
LUA SECURITY WHITEPAPER
7
section three
Securing Your Data
Overall Security Responsibility
Security in the cloud is slightly different than security in your on‐premises data
centers. Since Lua is cloud-based, security responsibilities are shared between
you and Lua. Lua is responsible for securing the underlying infrastructure that
supports the cloud and protecting your data. You are responsible for using
secure passwords and best practices (like mobile phone lock codes).
60%
of IT professionals
believe employees have
become less diligent in
practicing good mobile
security. 5
Physical and Environmental Security
Your data is stored in world-class, highly secure, audited data centers that utilize
state-of-the art electronic surveillance and multi-factor access control systems. All
data centers are housed in nondescript facilities, staffed 24x7 by trained security
guards and access is strictly authorized. Environmental systems are designed to
minimize the impact of disruptions to operations. Multiple geographic regions
and Availability Zones allow you to remain resilient in the face of most failure
modes, including natural disasters or system failures.
Data center access is only provided to employees and contractors who have a
legitimate business need for such privileges. When an employee no longer has
a business need for these privileges, his or her access is immediately revoked. All
physical access to data centers by employees is logged and audited routinely.
Data Reliability
Lua data servers reside in SSAE 16 accredited datacenters with features including
hurricane-rated roofs and multiple redundant power sources. All data is
automatically updated to servers in separate locations. Regular backups are
performed on all data, including off-site data backups to protect against almost
all disaster scenarios.
5. Raytheon Cyber Products (See footnote 1)
LUA SECURITY WHITEPAPER
8
Fire Detection and Suppression
Automatic fire detection and suppression equipment has been installed to
reduce risk. The fire detection system utilizes smoke detection sensors in all data
center environments, mechanical and electrical infrastructure spaces, chiller
rooms and generator equipment rooms. These areas are protected by either wet‐
pipe, double‐interlocked pre‐action, or gaseous sprinkler systems.
Power
The data center electrical power systems are designed to be fully redundant
and maintainable without impact to operations, 24 hours a day, and seven days
a week. Uninterruptible Power Supply (UPS) units provide back‐up power in the
event of an electrical failure for critical and essential loads in the facility. Data
centers use generators to provide back‐up power for the entire facility.
one third
of IT leaders say their
organization does not
have a mobile security
strategy for all sensitive
and confidential
proprietary data.6
Climate and Temperature
Climate control is required to maintain a constant operating temperature for
servers and other hardware, which prevents overheating and reduces the
possibility of service outages. Data centers are conditioned to maintain optimal
atmospheric conditions. Personnel and systems monitor and control temperature
and humidity at appropriate levels.
Management
The data centers monitor electrical, mechanical and life support systems so that
any issues are immediately identified. Preventative maintenance is performed to
maintain the continued operability of equipment.
Storage Device Decommissioning
When a storage device has reached the end of its useful life, procedures
include a decommissioning process that is designed to prevent customer data
from being exposed to unauthorized individuals. Techniques detailed in DoD
5220.22‐M (“National Industrial Security Program Operating Manual “) or NIST
800‐88 (“Guidelines for Media Sanitization”) are used to destroy data as part of
the decommissioning process. All decommissioned magnetic storage devices
are degaussed and physically destroyed in accordance with industry‐standard
6. Raytheon Cyber Products (See footnote 1)
practices.
LUA SECURITY WHITEPAPER
9
Availability
Data centers are located in clusters in various global regions. In case of failure,
automated processes move customer data traffic away from the affected area.
Applications are deployed in an N+1 configuration, so that in the event of a data
center failure, there is sufficient capacity to enable traffic to be load‐balanced to
the remaining sites.
The data centers offer flexibility to place instances and store data within
multiple geographic regions as well as across multiple availability zones within
45%
of senior executives
surveyed say their
company experiences
cyber attacks hourly or
daily. 7
each region. Each availability zone is designed as an independent failure zone.
This means that availability zones are physically separated within a typical
metropolitan region and are located in lower risk flood plains (specific flood zone
categorization varies by Region).
In addition to discrete uninterruptable power supply and onsite backup
generation facilities, the centers are each fed via different grids from independent
utilities to further reduce single points of failure. All availability zones are
redundantly connected to multiple tier‐1 transit providers. Distributing
applications across multiple availability zones allows the servers to remain
resilient in the face of most failure modes, including natural disasters or system
failures.
Incident Response
The data centers employ industry‐standard diagnostic procedures to drive
resolution during business‐impacting events. Staff operators provide around the
clock coverage to detect incidents and manage the impact and resolution.
Communication
Various methods of internal communication have been implemented at a global
level to help employees understand their individual roles and responsibilities
and to communicate significant events in a timely manner. Lua will alert you
immediately to any potential problems or issues.
7. http://www.ponemon.com, 2015.
LUA SECURITY WHITEPAPER
10
Secure, Enterprise Text Messaging
Lua’s comprehensive mobile messaging solution offers advanced security features at every
level -- the device, the network and physical locations. Rest assured your data is safe, no
matter where or how you work.
LUA SECURITY WHITEPAPER
11
The enterprise communication solution.
Instant, secure, and accountable.
www.getlua.com
[email protected]