Platform security architecture

Confidentiality — the property of protecting data or services from unauthorized access.

Integrity — the property that data or services are not susceptible to unauthorized manipulation.

Availability — the property that the system will be available for its intended use.

Standards and compliance page underscores the fundamental role that data privacy and regulatory compliance play in safeguarding the integrity, confidentiality, and accessibility of the information entrusted to the Registries Platform.

Data classification — defining and establishing the level of confidentiality, integrity, and availability of data based on their importance, sensitivity, and potential impact on the organization or platform.

Encryption at rest — description of the Platform’s cryptographic mechanisms for transforming data into an unreadable format to protect confidentiality and prevent unauthorized access to this data while it is stored.

Encryption in transit — description of the Platform’s cryptographic mechanisms for transforming data into an unintelligible form to ensure its confidentiality and protection against unauthorized access during transmission over the network.

Data retention — description of procedures and technical measures that regulate the duration of data retention on the Platform to meet legal requirements, internal policies, or business needs.

Secrets management — documentation regarding the usage, handling, and security assurance of access keys within the Platform.

Access control — mechanisms for controlling and regulating access to Platform resources, systems, data, and other assets to ensure the confidentiality, integrity, and availability of information, as well as mechanisms for controlling the lifecycle of users and entities.

Data integrity — description of the process of ensuring the truthfulness, non-alteration, and integrity of data, systems, and processes within the Platform.