Uses a server-side, secure, built-in session manager that generates a new random session ID with high entropy after login.Scripts are not deployed with default credentials, particularly for admin users.
App protected from clickjacking protection, XSS, MIME-Sniffing, HSTS, HPKP or set the CORS settings.Rate limit API and controller access to minimize the harm from automated attack tooling.Tele call between patient and healthcare professional is via secure WebRTC which is running on a secure WebRTC gateway which in-turn is running on a on-premise ( self hosted or cloud hosted ) server infrastructure.All customer data on the server is encrypted using 128 bit AES encryption.Load Balancer supported for horizontal scaling.Use of JWT and JWE for securing all API’s.
0 kommentar(er)
