Blacksands SCaaS brokers point-to-point encrypted connections. The SCaaS architecture allows Blacksands to provide dynamic authentication, authorization, and routing, without touching the customer data. Each encrypted connection maintains near real-time audit-able encryption continuity. Furthermore, because Blacksands SCaaS brokers the connections it does not route the connections through its data-centers. This means Blacksands is not subject any data regulations with regard to the point-to-point data transfer and Blacksands is never a limiter to scalability.
Blacksands Management System can hold some customer PII including name, phone numbers, and email. The customer has the option to connect a portion of its directory structure (Active Directory, LDAP) or it can utilize a non-identifiable UID (User Identifier).
All data at rest and in transit is encrypted.
All access to data is done via two-factor authentication utilizing TLS mutual certificate based authentication.
All system can be, upon customer request, FIPS 140-2 compliant.
The Blacksands Management Cloud is hosted on Blacksands’ owned servers colocated in high security data centers.