지금 지원 담당자와 채팅
지원 담당자와 채팅

Nova Current - Core Security Guide

Introduction

Managing information system security is a priority for every organization. In fact, the level of security provided by software vendors has become a differentiating factor for IT purchase decisions. strives to meet standards designed to provide its customers with their desired level of security as it relates to privacy, confidentiality, integrity and availability.
 

This document describes the security features of Nova Core. This includes access control, protection of customer data, secure network communication, and cryptographic standards.

About Quest Nova Core

Nova Core provides the following functionality and basic building blocks for other Nova applications to be built upon:

 

·Provides identity for users and clients by using OpenID Connect standard

·Provides organization hierarchy for partners and end organization enforcing security access validation

·Allows users assignments to roles and organizations for access

·Exposes notification mechanism for all services (Alerting)

·Implements service lookup for internal service-to-service communication and description of service endpoints for UI (to call region specific service based on provisioning for customers data storage)

·Provides dashboard and widget(s) configuration storage to UI

·Ability execute and deliver (via email) reports on user configurable schedule

 

Nova Core is hosted in Microsoft Azure and delivers most of its functions via Microsoft Azure cloud services.

Architecture overview

The following scheme shows the key components of the Nova Core configuration.

 

Architecture1

Azure datecenter security

Microsoft Azure datacenters have the highest possible physical security and are considered among the most secure and well protected datacenters in the world. They are subject to regular audits and certifications including Service Organization Controls (SOC) 1, SOC 2 and ISO/IEC 27001:2005.
 

Relevant references with additional information about the Windows Azure datacenter security can be found here:

·Microsoft Azure Trust Center: https://azure.microsoft.com/en-us/overview/trusted-cloud/

·Microsoft Trust Center Compliance: https://www.microsoft.com/en-us/trust-center/compliance/compliance-overview?service=Azure#Icons

·Microsoft’s submission to the Cloud Security Alliance STAR registry: https://cloudsecurityalliance.org/star/registry/

·Whitepaper: Standard Response to Request for Information – Security and Privacy: http://www.microsoft.com/en-us/download/details.aspx?id=26647

·Microsoft Global Datacenters: Security & Compliance: https://www.microsoft.com/en-us/cloud-platform/global-datacenters

·Azure data security and encryption best practices: https://docs.microsoft.com/en-us/azure/security/fundamentals/data-encryption-best-practices

·Microsoft and FIPS:https://docs.microsoft.com/en-us/compliance/regulatory/offering-FIPS-140-2?view=o365-worldwide

셀프 서비스 도구
지식 기반
공지 및 알림
제품 지원
소프트웨어 다운로드
기술 설명서
사용자 포럼
비디오 자습서
RSS 피드
문의처
라이센싱 지원가져오기
기술 지원
모두 보기
관련 문서

The document was helpful.

평가 결과 선택

I easily found the information I needed.

평가 결과 선택