Securing your Business
At GMO Cloud, nothing is left to chance when securing confidentiality, integrity and availability of customer data. To this end, GMO Cloud offers a computing platform rich in scalability and reliability, allowing our customers the freedom to construct a large range of applications. Customer confidence and trust is of paramount importance to us.
Best of all, we simply provide the tools to achieve your goals. It is our customers who decide how best to manage their security needs within their own application environment. Using the best practices in security, GMO Cloud ensures that both end-to-end security and privacy is provided with the most suitable features. We also provide full usage instructions to our customers.
- Strategy
- Firewall
- SSL
Multi-level Security Strategy
No matter what business you are in, your IT infrastructure requires multiple, overlapping tiers of security for its total protection. This is the driving principle of our multi-level security strategy for shielding you against physical and electronic threats.
Through certified operational procedures and practices, a comprehensive range of software and hardware security solutions, and strategic partnerships with industry-leading companies, GMO Cloud helps you maximize uptime, protect private information and mitigate business risk. Having a secured and monitored GMO Cloud Infrastructure means that you can rest at a night knowing that your environment is protected and being watched over.
System Level Security
Anti-sniffing Function
Packet sniffing can result in the leakage of confidential information including emails and passwords, significantly impacting company security and performance. That's why GMO Cloud is equipped with an "anti-sniffing function" which prevents users from observing the traffic of others in the same hypervisor, eliminating the possibility of third party packet sniffing.
Anti-spoofing Function
IP spoofing is a form of attack achieved while using a different sender's IP address. With its "anti-spoofing function", GMO Cloud assumes access from outside the network to be "spoofing," filtering and blocking accordingly. Malicious third parties lose the ability to intentionally use the wrong IP address to access your information.
Physical Security
Physical Security includes locking down and logging all physical access to our data centers.
- Data center access is limited to only authorized personnel
- Badges and biometric scanning for controlled data center access
- Security camera monitoring at all data center locations
- Access and video surveillance log retention
- 24x7 onsite staff provides additional protection against unauthorized entry
- Unmarked facilities to help maintain low profile
- Physical security audited by independent firms annually
Operations Security
Operational Security involves creating business processes and policies that follow security best practices to limit access to confidential information and maintain tight security over time.
- ISO 27001/2 based policies, reviewed at least annually
- Documented infrastructure change management procedures
- Secure document and media destruction
- Incident management function
- Business continuity plan focused on availability of infrastructure
- Independent reviews performed by third parties
- Continuous monitoring and improvement of security program
Network Infrastructure
Network Infrastructure provides the availability guarantees backed by aggressive SLAs.
- High-performance bandwidth provided by multiple network providers
- Elimination of single points of failure throughout shared network infrastructure
- Cables properly trunked and secured
- Proactive network management methodology monitors network route efficiency
- Real-time topology and configuration improvements to adjust for anomalies
- Network uptime backed by Service Level Agreements
- Network management performed by authorized personnel only
Environmental Controls
Environmental Controls implemented to help mitigate the risk of service interruption caused by fires, floods, and other forms of natural disasters.
- Dual power paths into facilities
- Uninterruptible power supplies (minimum N+1)
- Diesel generators (minimum N+1)
- Service agreements with fuel suppliers
- HVAC (minimum N+1)
- VESDA / fire suppression
- Flood detection
- Continuous facility monitoring
Human Resources
Human Resources provides GMO Cloud employees with an education curriculum to help ensure that they understand their roles and responsibilities as they relate to information security.
- Background screening performed on employees with access to customer accounts
- Employees are required to sign non-disclosure and confidentiality agreements
- Employees undergo mandatory security awareness training upon employment and annually thereafter
Additional Security Services
GMO Cloud's Managed Security Services allow you to outsource indispensable security measures, from the configuration of "Firewall" and "pintables" to the installation of SSL certificates and security updates needed for server builds and operations. Also included is a weekly report notifying you of unauthorized access to your servers.
Firewall Security
Protect your cloud infrastructure from malicious threats with GMO Cloud's firewall. With protection for both the network and hypervisor as part of all of our plans' standard specifications, you can add a firewall to each of your virtual machines for no additional charge.
1. Network/Infrastructure
Data center infrastructure and network protection firewalls are installed and operated constantly.
2. Hypervisor
GMO Cloud maintains a Customer Isolation Module (CIM) on our Xen hypervisors, in addition to the hypervisor's own security features. This anti-spoof/anti-sniff firewall ensures that your virtual machines have complete isolation and independence.
3. Virtual Machines
Add a firewall to each virtual machine. Based on a predefined policy, you can allow/deny access from certain IP addresses, improving security considerably.
Communication Approval Setting | Approval setting for incoming | |
---|---|---|
Number of Rules to be Set | No limit | |
Details of Rules | Protocol | TCP, UDP |
Address Port | Designated by the user | |
IN/OUT | Incoming | |
Connection Type | IP address, CIDR |
SSL Certificates
Maximizing relationships with Site Visitors
Build trust with your site's visitors by securing their private information while it moves across the Internet using Secure Sockets Layer (SSL) encryption technology. An SSL certificate on your page will inspire that vital customer confidence your business needs. GMO Cloud offers DomainSSL and OrganizationSSL server certificates issued by the industry leader, GlobalSign, as an optional extra. Such certificates can also be installed as one of our Add-on Services.
GlobalSign DomainSSL Certificate
DomainSSL certificates protect sensitive data with fast and affordable encryption for your website. Start securing your website transactions in just a few minutes.
As one of the most popular SSL Certificates on the web, DomainSSL is one of the fastest and most affordable ways to activate strong SSL protection for your website. DomainSSL is fully automated which means you'll be able to start protecting your ecommerce, logins, webmail and more in just a few minutes, 24/7. DomainSSL activates the browser padlock and https, and assures your customers that you take security seriously.
Why use a DomainSSL Certificate?
2048 bit SSL security: all data sent via the Internet benefits from the highest available level of protection Fast SSL issuance: delivered in only minutes for instant protection Affordable security from an established and respected SSL provider Secure single or multiple websites with Wildcard SSL and multi-domain SSL.
DomainSSL Key Features
- 2048 bit future proof SSL Certificates
- A single certificate secures both www.domain.com and domain.com
- Universally works with all browsers, mobile phones and devices
- Optional SGC technology increases weak encryption strength in older browsers
- Free malware monitoring service for your domain
- Free phishing detection alert service
- Install across as many servers as you wish for no extra charge
- Reissue as many times as needed during the validity period
- Clickable secure site seal
- Optional AutoCSR technology - we'll create the CSR if you don't know how to
- Underwritten warranty and 7 day refund
- SSL page load acceleration for enhanced website performance
GlobalSign OrganizationSSL Certificate
High assurance SSL shows website visitors your authenticated identity. The increased credibility will help increase conversions.
High assurance OrganizationSSL Certificates provide instant identity confirmation and strong SSL protection for your website. Your customers see that GlobalSign has authenticated your identity - strengthening their trust that they're doing business with the right people. OrganizationSSL gives your website a step up in credibility over domain validated SSL Certificates, and are typically used in enterprise or ecommerce applications. OrganizationSSL activates the browser padlock and https, shows your corporate identity, and assures your customers that you take security very seriously.
Why use an OrganizationSSL Certificate?
2048 bit future proof SSL security: all browsers connecting to your website receive the highest available level of protection 1-2 business day verification turnaround High assurance: authentication of the organization's identity increases credibility Affordable security from an established and respected SSL provider Secure single or multiple websites with Wildcard SSL and multi-domain SSL.
OrganizationSSL Key Features
- Contains your authenticated organization details
- 2048 bit future proof SSL Certificates
- A single certificate secures both www.domain.com and domain.com
- Universally works with all browsers, mobile phones and devices
- Optional SGC technology increases weak encryption strength in older browsers
- Free malware monitoring service for your domain
- Free phishing detection alert service
- Install across as many servers as you wish for no extra charge
- Reissue as many times as needed during the validity period
- Clickable secure site seal displaying organization details
- Optional AutoCSR technology - we'll create the CSR if you don't know how to
- Underwritten $1.25 million warranty and 7 day refund
- SSL page load acceleration for enhanced website performance