Avolution Hosted Services
Avolution Hosted Services use some of the most advanced technology for Internet security available today. When you access our site using a modern web browser (Mozilla Firefox, Google Chrome, Apple Safari, etc.), Transport Layer Security (TLS) technology protects your information using both server authentication and encryption of data between your computer and the data center. This ensures that your data, while in transit, is safe, secure, and available only to registered users in your organization.
In addition to TLS encryption, your account/data is protected by a mandatory user ID and password with the ability to use Single Sign-On (SSO) and Multi-factor Authentication (MFA) which leverages your own identity provider. Any password-protected areas of Avolution Hosted Services can be accessed only with a valid password. Each password owner is responsible for keeping the password secret and confidential, and for notifying Avolution if the password may have been stolen or might otherwise be misused.
For more information, please see our Terms of Use.
Security Frequently Asked Questions
Where are the servers hosted?
All Avolution hosted servers are securely located in state-of-the-art facilities that are managed by Amazon Web Services (AWS), the world’s leading cloud platform provider. Avolution has chosen AWS because of their reputation for quality service and support as well as their unparalleled reputation for reliably hosting many of the Internet’s most trafficked web systems. Server disk drives and backups are encrypted using AES-256 encryption.
Are the data centers physically secure?
AWS’s data centers are located in various locations throughout the world, including North America, South America, Europe, Middle East and Asia-Pacific. The location where the client’s data is stored is determined by their geographical location. Only those within AWS who have a legitimate business need to have such information know the actual location of these data centers, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access. More information on AWS’s hosting and security is available from http://aws.amazon.com/security/.
Are the server instances dedicated or multi-tenanted?
Avolution offers both options. Clients using the multi-tenanted environments are each given a separate secure space and are unable to access the data of other clients. For clients with stricter requirements, dedicated hosting is available where new server instances are specially provisioned. If a client chooses not to renew dedicated hosting, their instance is completely decommissioned and not reused for other projects.
How is access to my data protected?
Authentication to Avolution’s AWS resources requires a valid need to know, user account, and MFA token to be provided. Additionally, servers are configured to accept connections only for required services and approved IP addresses. Application data is only accessible with appropriate credentials, ensuring that there is no possibility of one customer having access to another customer’s data without explicit knowledge of their login information.
Is all data encrypted?
All ABACUS data is encrypted in transit and at rest. Avolution server disk drives and backups are encrypted using industry standard AES-256 encryption. Application data is also encrypted using AES-256.
Are Single Sign-On (SSO) and Multi-Factor-Authentication (MFA) Supported?
Avolution supports SSO for ABACUS Studio in the Cloud and ABACUS Enterprise using SAML 2.0, OpenID Connect, and WS-Federation. ABACUS Studio in the Cloud users can also choose to enable MFA.
Are the hosting services compliant with common standards?
Avolution itself is ISO 27001 certified; in addition our hosting-service provider AWS has successfully completed multiple SAS70 Type II audits, and now publishes a Service Organization Controls 1 (SOC 1) report under both the SSAE 16 and the ISAE 3402 professional standards. Accordingly, being supported by AWS, Avolution’s cloud services support many security standards including, but not limited to, DoD SRG, FedRAMP, FIPS, IRAP, ISO 9001, ISO 27001, ISO 27017, ISO 27018, MLPS Level 3, MTCS, PCI DSS Level 1, SEC Rule 17-a-4(f), SOC 1, SOC 2 and SOC 3.
Can I switch from on-premises to cloud or vice-versa?
Yes, ABACUS projects can be transferred from an on-premises hosted environment to Avolution’s hosted solutions. If a client chooses to stop using their hosted solution and move to an on-premises deployment, a backup of all data can be provided and loaded onto a server that is internally provisioned by the client.
What privacy policies do you have in place?
Avolution adheres to a strict policy for ensuring the privacy of your personally identifiable information (such as full name, address, e-mail address, and/or other identifiable information). For more information, please see our Privacy Statement.
For additional security information please see our End User Agreement