Hosting
Kraken is hosted on Amazon Web Service (AWS) in the North Virginia region. Full details on the AWS security measures can be found here
https://d1.awsstatic.com/whitepapers/Security/AWS_Security_Whitepaper.pdf
Physical Security
For full details of AWS physical security see
https://aws.amazon.com/compliance/data-center/data-centers/
Encryption
All data is encrypted in transit both within the Kraken network and between you and the application using TLS/SSL. The encryption is based on RSA 256 bit keys.
Infrastructure Scans
Threat detection scans are running constantly and any identified issues are addressed based on the risk rating produced by the scans.
Firewalls
Firewalls exist at both the network layer via virtual private cloud (“VPC”) and on each host. The VPC serves to isolate Kraken servers from the rest of the AWS network.
AWS Security Groups (“AWS SG”) and VPC Access Control Lists (“VPC ALC”) provide both inbound, outbound and internal content policies.
Audit Log
Infrastructure actions and performance is logged and available for audit, security and compliance purposes. Various alerts are set up on the logging in order to provide early response to incidents.