Prazna - Security

Security

Prazna follows the zero-trust approach of "never trust, always verify” to enhance the security posture and reduce the attack surface, mitigate risks, and provide better protection against evolving cyber threats. This approach requires continuous verification of identities, strict access controls, and thorough authentication and authorization processes for every interaction within a system.

Least Privilege Approach

Prazna is designed with the principle of the least privilege security concept. We have limited access to data, resources, applications, and application functions to only those a user or entity requires to execute their specific task or workflow.

Continuous Authentication and Authorization

SSO Integration

Prazna utilizes Single Sign-on (SSO) to help users authenticate securely with enterprise-level credentials and policies. The SSO integration simplifies the authentication process and optimizes the user experience and adheres to the highest security and efficiency standards.

Network security

Network Security

Prazna adopts the best practices for network security. All communications between Teams, Web portal, and Prazna's backend are encrypted and accessible via HTTPS using TLS 1.2 / TLS 1.3 with a key length of at least 128 bits for encryption.

Data Security

We extend the principle of the least privilege further to the data we store. Prazna only stores data required for analytics, billing, and troubleshooting bugs & performance issues. We use full-disk encryption within the industry-standard AES-256 encryption algorithm and Azure Key vault for managing cryptographic keys. All the data stored in the database is encrypted using TDE.

Continuous Monitoring

Prazna undergoes regular vulnerability assessments, and penetration tests, conducted by third-party companies, and any vulnerabilities identified in the process are addressed based on their level of risk and severity.

Secure Development

Prazna employs secure programming techniques and protocols in developing applications handling customer data. Also, it provides training for developers in secure development principles.

As part of the DevSecOps process, we regularly perform SAST, DAST & SCA scans to identify & address issues early in the development process.

Shared Responsibility Model

Prazna’s shared responsibility model allows customers to retain control over user management. It also helps enhance data security by disabling/removing access, establishing user password requirements, enabling two-factor authentication, etc.

Prazna provides users with the flexibility to configure the workflows. It also ensures the alignment of business objectives by selecting the right data providers and authentication (API tokens, passwords, certifications, etc.) via the portal. 

Footer

Start your journey today!

digital@bridgenext.com

Security

Prazna is designed with the principle of least privilege security concept. We have limited access to data, resources, applications, and application functions to only those a user or entity requires to execute their specific task or workflow.

Prazna undergoes regular vulnerability assessments, and penetration tests, conducted by third-party companies, and any vulnerabilities identified in the process are addressed based on their level of risk and severity.

Least Privilege Approach

Prazna is designed with the principle of the least privilege security concept. We have limited access to data, resources, applications, and application functions to only those a user or entity requires to execute their specific task or workflow.

SSO Integration

Prazna utilizes Single Sign-on (SSO) to help users authenticate securely with enterprise-level credentials and policies. The SSO integration simplifies the authentication process and optimizes the user experience and adheres to the highest security and efficiency standards.

Network Security

Prazna adopts the best practices for network security. All communications between Teams, Web portal, and Prazna's backend are encrypted and accessible via HTTPS using TLS 1.2 / TLS 1.3 with a key length of at least 128 bits for encryption.

Data Security

We extend the principle of the least privilege further to the data we store. Prazna only stores data required for analytics, billing, and troubleshooting bugs & performance issues. We use full-disk encryption within the industry-standard AES-256 encryption algorithm and Azure Key vault for managing cryptographic keys. All the data stored in the database is encrypted using TDE.

Continuous Monitoring

Prazna undergoes regular vulnerability assessments, and penetration tests, conducted by third-party companies, and any vulnerabilities identified in the process are addressed based on their level of risk and severity.

Secure Development

Prazna employs secure programming techniques and protocols in developing applications handling customer data. Also, it provides training for developers in secure development principles.

As part of the DevSecOps process, we regularly perform SAST, DAST & SCA scans to identify & address issues early in the development process.

Shared Responsibility Model

Prazna’s shared responsibility model allows customers to retain control over user management. It also helps enhance data security by disabling/removing access, establishing user password requirements, enabling two-factor authentication, etc.

Prazna provides users with the flexibility to configure the workflows. It also ensures the alignment of business objectives by selecting the right data providers and authentication (API tokens, passwords, certifications, etc.) via the portal. 

Start your journey today!

Set up Prazna today!