Security
OCA has undergone Common Criteria evaluation to EAL2+ with the Defence Signals Directorate's Australasian Information Security Evaluation Program. It is the only product of its kind in the world to be included on the Evaluated Product List.
More Details
OCA comes with high-grade encryption security (256 bit) and provides management with comprehensive control over user permissions, including access permissions for every component of the user interface, as well as control over who can view, edit or send objects within the system, and full audit logging of user activity.
Other security configurations and optional features include:
- Integration with 3rd party authentication services like LDAP and Active Directory
- 2-factor authentication (SMS or hardware tokens)
- Encrypted file system
- VPN
- OS Mandatory Access Control (MAC)
- Role Based Access Control (RBAC)
- Multi-level Security (MLS)
In terms of physical security, Noggin's Secure Hosting data centres are certified to ISO27001, AS/NZS7799 Information Security Management System, and ASIO T4 Intruder Resistant.
Furthermore key Noggin has:
- Key staff with security clearance to Secret (AGVS)
- Strong expertise in all aspects of information and software security and a particular focus on security matters in our systems
- Internal procedures in place for the handling of sensitive data