Shared security responsibility model

In the UsageCloud environment, security is a shared responsibility between the customer and DigitalRoute. This model helps both parties understand their respective security obligations.

Open

Customer responsibilities

• Security in UsageCloud:

  • Customer Data, Data Governance, Data Classification: Control the lifecycle of data, including data protection.

  • User Account Management, Application Management: Secure user and IAM (Identity and Access Management) access policy.

  • Stream Management, Stream Configuration Management: Configure streams and resources for secure transmission and processing.

  • Client-Side Encryption: Manage encryption keys and policies in external vaults.

DigitalRoute responsibilities:

• Security of UsageCloud:

  • Application Security, Access Controls, Data Encryption (At-Rest): Responsible for securing the application, including application-level security features and data encryption methodologies.

  • Compute, Network, and Storage Isolation; IAM Framework: Ensure proper isolation technologies are used to protect against unauthorized access and ensure data integrity across the infrastructure.

  • Infrastructure Security, High Availability (Load Balancer, WAF, DDoS Protection): Maintain and secure the infrastructure to ensure high availability and resilience against DDoS attacks and other potential security threats.
    
    

This model outlines the division of security responsibilities between the customers and DigitalRoute to ensure that both parties understand their obligations in maintaining the security and integrity of the UsageCloud. This collaborative approach helps create a strengthened security posture for the cloud environment.