Moxtra is designed with multiple layers of protection, covering data transfer, encryption, network conﬁguration, and application-level controls, all distributed across a scalable, secure infrastructure.
Moxtra users can access the binders, pages, ﬁles and other data at any time from the desktop, web, and mobile clients, or through third-party applications connected to Moxtra. All of these clients connect to the secure server. Distributing different levels of information across these services not only makes syncing faster and more reliable, it also enhances security.
The Moxtra service can be utilized and accessed through a number of interfaces. Each has security settings and features that process and protect user data while ensuring ease of access.
This interface can be accessed through any modern web browser. It allows users to chat, meet, annotate ﬁles, upload, download, view, and share their ﬁles.
The Moxtra desktop application is a powerful client that allows users to collaborate from their desktop. It gives users full access to their Moxtra accounts, and runs on Windows or Mac operating systems.
The Moxtra app is available for iOS, Android and BlackBerry mobile devices and tablets, allowing users to collaborate on the go.
Moxtra's security team performs automated and manual application security testing on a regular basis to identify and patch potential security vulnerabilities and bugs. Moxtra also work with third-party security specialists, as well as other industry security teams and the security research community, to keep the applications safe and secure.
Before any content is added into Moxtra users have to login to their Moxtra account. All passwords in Moxtra are stored using one-way hashing (SHA 256) and they are never exchanged over clear channel. Moxtra also supports “sign-in with Google” and “Login with Facebook” for users who opt to login with Google or Facebook.
Single Sign On
Moxtra supports federated authentication using SAML (Security Assertion Markup Language) 2.0 protocol to easily enable the integration with various identity and cloud SSO providers. This lets an organization securely authenticate and authorize between their identity provider and Moxtra in a trust relationship.
DATA IN TRANSIT
To protect data in transit, Moxtra uses Secure Sockets Layer (SSL)/Transport Layer Security (TLS) for data transfer, creating a secure tunnel protected by 128-bit or higher Advanced Encryption Standard (AES) encryption. Data in transit between a Moxtra client (currently desktop, mobile, API, or web) and the hosted service is always encrypted via SSL/ TLS. For end points, Moxtra controls (desktop and mobile) and modern browsers, they use strong ciphers and support perfect forward secrecy. Individual sessions are identiﬁed and re-veriﬁed with each transaction, using a unique token created at login.
DATA AT REST
Moxtra hosts its service using Amazon S3, here is an overview of security provided by Amazon S3 for the data at rest: Amazon S3 Server Side Encryption (SSE) is used to encrypt the data stored at rest in Amazon S3. Amazon S3 Server Side Encryption employs strong multi-factor encryption. Each object is encrypted with a unique key. As an additional safeguard, this key itself is encrypted with a regularly rotated master key. Amazon S3 Server Side Encryption uses one of the strongest block ciphers available — 256-bit Advanced Encryption Standard (AES-256) — to encrypt your data.
For more information on Moxtra Security, please click contact us.