Security at the Forefront

Security is paramount to any cloud offering. Skytap’s focus on securing its infrastructure and its customers’ environments is a top priority. Industry-standard certifications and programs, a robust security feature set, and an architecture built with security in mind help Skytap fit into any corporate security and compliance program.

Certifications and Security Programs

Skytap builds and operates in accordance with security best practices and will provide comprehensive documentation in support of the following:

  • SSAE 16 SOC 2 Type 2
  • EU-US Privacy Shield Certified
  • HIPAA readiness
  • nGuard penetration testing
  • 24/7 application security scanning
  • Disaster recovery and business continuity plan

Product Security

Skytap offers a host of product features to ensure that its customers’ cloud environments remain secure:

  • Standard, encrypted SSL over HTTPS communications
  • Role-based access controls
  • Federated authentication / single sign-on (SSO) using SAML 2.0
  • IP-based access controls
  • Unregistered browser activation
  • API token authentication
  • Audit logs
  • Dedicated regions
  • Direct connect
  • IPsec site-to-site VPN
  • Public Internet blocking

Architected for Security

Every component used to build the Skytap platform has been selected or built with security in mind:

  • Data at rest is secured using virtualized network-attached datastores, which are destroyed when detached from their owners
  • Environment networks are assigned unique VLANs as defined by IEEE 802.1Q, ensuring that all machines and appliances, physical or virtual, only receive the packets addressed to them
  • VLAN tags and switch provisioning are managed within the Skytap platform and remain invisible to virtual machines and users, preventing sniffing or forging
  • Networks between Skytap customer accounts cannot be connected without a mutual IPsec VPN tunnel