QA Assistant™ Security Measures
May 1, 2008
Note: This article is over 10 years old and our Server Hardware and Security have since been significantly improved
QA Assistant software has been reliably available as a web-based application with greater than 99.999% server up-time since 2006. Security is prioritized with industry best practices employed to ensure our clients receive the best protection against fraudulent use of our products and services.
Data Center Statistics
New Production Servers Statistics- 100% Up Time since 2012
- 2x Six-Core Xeon Processors
- Up to 32 GB RAM
- RAID 6 SSD Disk Arrays
- Hot-swap Drives, Power Supply Units, and Cooling Fans Real Estate Summary
- Located at CenturyLink Boston, MA
- 30,400 sq.ft. total building interior
- 12 in. raised floor (flood protection)
- Energy Star Certified
- NSTAR provides power feeds
- Generator configuration = N + 1
- Minimum two fuel replenishing companies
- Cooling system configuration = N+1
- Cyxtera manages humidity and temperature to strict ASHRAE standard
- Seismically braced racks
- VESDA provides early warning detection
- FM200
User Authentication
Each user signs into our software using his/her company email address and a password which has been encrypted and stored in our database for verification. If a user's password is lost, the user may request a new password which is randomly generated and sent to that same user through his/her email address which was previously stored in our system. While using our software, a user's information is verified using server-side authentication techniques as added security measures.
Programming in Security
QA Assistant software applications are developed in-house with security a priority. Every request to view or edit information on our servers and through our software is first evaluated by combining server-side information with access credentials to ensure the person making the request has the authority to do so.
Data Encryption
A secure connection using HTTP/2 over HTTPS to QA Assistant Studio is forced at a server level using SSL 3 sha256 bit encryption with 2048 Bit RSA exchange.
Encrypted information and 3rd party documents are stored using a minimum of AES-256 encryption and unique private keys per account.
24/7 Technical Support
QA Assistant servers are monitored 24 hours a day, 7 days a week with automated systems to identify potential hardware issues and mitigate any DDoS attacks. Experienced engineers and technicians are on site 24/7 to provide hardware maintenance and support. QA Assistant engineers also have 24/7 access to live, highlyskilled technical and server support specialists as well as direct access to our servers via SSH / Secure Shell / SFTP, using the command line directly on the server for fast, secure server management.
Data Center Security
QA Assistant Studio servers are maintained at CenturyLink / Cyxtera’s Boston Data Centers which combines a hybrid-ready information security fabric with best-in-class data centers. Cyxtera provides some of the most powerful logical and physical security systems available and utilizes a centralized global security operations center with 24/7 secured access monitoring including motion and breach sensors, provides multiple challenge points throughout, and grants permissions-based access to all data center areas. Each data center supports hundreds of external and internal video surveillance cameras. Server cages and cabinets are outfitted with locking mechanisms. Implementing ISO27001 compliance standards within the data center provides a model for establishing, operating, monitoring, and improving an Information Security Management System (ISMS). The ISO 27001 certification demonstrates CenturyLink complies with and enforces information security processes.
IP Network
The CenturyLink IP network provides lowlatency, secure, reliable and high availability connectivity between geographically spread out locations. Cross connects to their Global Tier 1 backbone and a broad range of carriers, including global and regional providers, bypasses internet congestions and ensure bestin-class network reliability and performance.
Additional network features include:
- A redundant network of multiple fiber trunks from multiple sources
- Redundant power on the premises
- Multiple backup generators
Production Servers
QA Assistant servers are specially selected for our software and built with the most reliable server components, including 2x Six-core Xeon processors, up to 32 GB RAM, RAID 6 disk arrays, and SSDs for the most I/O-intensive operations. The hot-swap disks, power supply units, and cooling fans allow repairs or replacement of these components while the machine stays online. This design brings the hardware reliability to the highest level.
Spare Servers
We keep a spare/standby server in each server rack. If a production server fails, it will be immediately replaced by a spare server, and the latest backup will be restored. This way we can offer you a 99.9% uptime guarantee.
Automated Daily Backups
In addition to the RAID-6 SSD disk arrays which ensure business continuity and availability, QA Assistant’s servers and customer information are automatically backed up each day so they may be restored in the event of a failure.
QA Assistant Support Team
Our experienced QA Assistant Support Team is available to provide expert assistance to our customers 24 hours, Monday through Friday via email: support@QAAssistant.com . Our team will respond to your question within 1 business day, and often much sooner.