Security

Grain business has its own strict rules for data confidentiality. As IT-technology develops fast, the times, when your own PC was the safest place on Earth, have gone far away long time ago.

Let’s compare storage on local server (like PC, or your office server) and storage on remote server (as Graintrack’s one):

  • Remote server is much more powerful and productive, as it is part of cloud services, and is as scalable as it needed.
  • Remote server is much more secured from fails, as it is located in secured building with few internet cables, and is supported by specialists 24/7.
  • Remote server can be updated without stopping work of the company
  • No one can just come and take remote server away.
  • Remote server has only licensed software installed.

What main vulnerabililities of cloud services exist and how we manage it:

Проблема Решение
1 SQL – injections Screening of input data
2 Data interception TLS encrypting 2048 bytes
3 CSRF (Cross-Site Request Forgery) Required request of unique session tokern while every POST-request
4 Losing data after operator mistake Daily database backup
5 Illegal withdrawal of servers by state agencies Servers in Germany, USA
6 Access to database from remote network Firewall configuration: only local applications can access database
7 Losing data after  drop of voltage or hard disk failure Few channels of internet and power supply
8 User password bruteforce Required complexity of password, required request on change every month. Access restriction by certain IP
9 DDoS Secret domain name, not indexing by search engines

Besides, GrainTrack Team has developed own decision, which completely changes the main principles of SAAS. From now, the database of clients will be hosted on their own server. GrainTrack has absolutely no possibility to read the data of our clients. To get more details check this (in russian).