1. Data Security
  • Overview
  • Application Guides
    • Frontend
      • Get Started - React App
      • Get Started - HTML and JS
      • Get Started - Angular JS
      • Get Started - Next JS App
    • Backend
      • Get Started - Node JS
      • Get Started - Golang
      • Get Started - ASP.NET
      • Get Started - JAVA
  • Dashboard
    • API Credentials
    • Organization
    • Social Login
    • Customize Email Template
    • Configure Custom Domain
    • IT Admin Portal
  • Authentication
    • Login Widget
    • Magic Link
    • Google Social Login
    • Multi-Factor Authentication
    • Single Sign-On Overview
    • Setup SSO Connection
  • Security
    • Overview
    • Authentication
      • Password Hashing and Storage
      • Multi-Factor Authentication Methods and Implementation
      • Session Management
    • Attack Protection
      • Bot Detection
      • Breached Password Detection
      • Brute Force Protection
      • Log Events
      • Secure JSON Web Tokens (JWT)
      • Secure OpenID Connect (OIDC)
      • Suspicious IP Throttling
    • Data Security
      • Data Encryption At Rest and In Transit
      • Secure Storage of Secrets (Keys, Credentials)
      • Sensitive Data Handling
    • Infrastructure
      • Security Considerations for Cloud Provider or Deployment Model
      • Threat Modeling
  • API References
    • Authentication
      • MagicLink
        • Email a Magic Link
        • Resend Email Magic Link
        • Verify Magic Link
        • Ping Status
      • Magic Auth Code
        • Email a Magic Auth Code
        • Resend Magic Auth Code
        • Verify Magic Auth Code
      • Phone Authentication
        • Send Magic Auth Code via SMS
        • Resend Magic Auth Code via SMS
        • Phone Magic Auth Verify
      • PassKey
        • Initiate Passkey Login
        • Passkey Registration Initialize
        • Finish Passkey Authentication
        • Complete Passkey Registration
        • Check User Passkey Authentication Status
        • List User PassKey Credentials
        • Update Passkey Name
        • Delete Associated Passkey
      • GET Auth Status
    • Token
      • Refresh Token
      • Access Token By Auth Code
    • Mutli-Factor Authentication (MFA)
      • MFA Access Token
      • List of Authenticators
      • MFA Enroll TOTP
      • Initiate MFA
      • QR Code Image API
      • Validate MFA Token
      • Get Backup Code
    • Role And Permission
      • List All Roles
      • List All Permission
      • Create New Role
      • Update Existing Role
      • Update Permission By Permission Id
      • Remove Organization Role By Role Id
      • Remove Organization Permission By Permission Id
    • User Management
      • List All Users
      • GET User By User Id
      • GET User by User Email Address
      • Create a User
      • Update User by User Id
      • Verify User Status By User Id
      • Delete User By User Id
      • Manage User Roles
      • GET Users Organizations
      • GET User Login Logs
    • Organization
      • Add New Organization
      • Get Organization
      • Get All Organization
      • Update Organization
      • Delete Organization
      • GET Configuration By Client Id
      • GET Configuration By Custom Domain
  1. Data Security

Data Encryption At Rest and In Transit

Introduction
Data security is paramount for any Single Sign-On (SSO) solution. SSOJet prioritizes user privacy and data protection by employing robust encryption practices for data at rest and in transit. This document provides a detailed overview of SSOJet's encryption strategies to ensure the confidentiality and integrity of sensitive user information.
Scope
This document covers the following aspects of data encryption in SSOJet:
Encryption for data at rest
Encryption for data in transit
Key management practices
Benefits of data encryption
Encryption for Data at Rest
SSOJet safeguards sensitive data stored on its servers using strong encryption algorithms:
Storage Encryption: Data is encrypted before being written to storage devices (e.g., hard drives, solid-state drives).
Database Encryption: Databases storing user information are encrypted at rest using industry-standard algorithms.
Key Management: Encryption keys are securely stored using Hardware Security Modules (HSMs) or other robust key management solutions. These keys are never stored alongside the encrypted data.
Encryption for Data in Transit
SSOJet encrypts all data communication channels to protect user information while traveling between systems:
HTTPS Enforcement: SSOJet enforces HTTPS (Hypertext Transfer Protocol Secure) for all communication, ensuring data transmission is encrypted using TLS (Transport Layer Security) protocols.
API Encryption: APIs used for communication between SSOJet and other applications leverage secure protocols with encryption in transit.
Key Management Practices
SSOJet adheres to best practices for secure key management:
Strong Encryption Algorithms: Utilizing industry-standard, high-strength encryption algorithms like AES-256 for data encryption.
Regular Key Rotation: Encryption keys are rotated periodically to minimize the risk of compromise.
Restricted Key Access: Access to encryption keys is strictly controlled and granted only to authorized personnel using secure access controls.
Benefits of Data Encryption
SSOJet's data encryption practices offer several significant benefits:
Confidentiality: Encryption ensures that even if unauthorized users gain access to data at rest or in transit, they cannot decipher the information.
Data Integrity: Encryption helps to detect any unauthorized modifications made to data during storage or transmission.
Regulatory Compliance: Strong encryption practices can help organizations comply with data privacy regulations that mandate data security measures.
Enhanced Security Posture: Encryption adds an extra layer of protection for user data, significantly reducing the risk of data breaches and unauthorized access.
Conclusion
SSOJet prioritizes data security by implementing robust encryption practices for data at rest and in transit. By leveraging strong encryption algorithms, secure communication protocols, and diligent key management strategies, SSOJet safeguards user information and fosters trust in its SSO platform.
For any security-related inquiries or to report a security incident, please contact our security team at:
Email: support@ssojet.com
This document provides a foundational understanding of data encryption in SSOJet. Organizations can further customize this document to include specific details about the encryption algorithms used, key management infrastructure, and compliance requirements.
Previous
Suspicious IP Throttling
Next
Secure Storage of Secrets (Keys, Credentials)
Built with