Subscribe to our blog

Security

eSpatial OnDemand GIS™ is secure, reliable Geographic Information System (GIS) software, delivered both via in-house server deployment, and Software-as-a-Service (SaaS) delivery.

This page provides details on the SaaS deployment environment, data storage and additional measures.

Cloud deployment environment: Amazon EC2

eSpatial OnDemand GIS is deployed on Amazon Elastic Cloud Computing (EC2) / Amazon Web Services (AWS) environment, which includes:

  • ISO 27001 certification
  • SAS70 certification
  • Compliance with Federal Information Security Management Act (FISMA)
  • Restricted access to data centres
  • Firewalls

eSpatial OnDemand GIS data storage

eSpatial OnDemand GIS uses the tried-and-trusted, enterprise grade Oracle database management software.

Additional measures taken by eSpatial

eSpatial OnDemand GIS:

  • Employs a multi-tenant isolation mechanism to keep customer organisations’ data separate from each other.
  • Authenticates users and enforces role-based access restriction to data and functions.
  • Doesn’t allow users to directly access the database. Furthermore, application-user credentials cannot be used as database access credentials.
  • Uses standard mechanisms to authenticate users (HTTP authorisation).
  • Follows enterprise best practice of using an LDAP Directory Server to manage a secure directory of users, passwords, roles and permissions.
  • Stores all passwords in an encrypted format.
  • Enforces role-based access restriction to data sets (map layers), user objects (maps, queries, reports, print layouts, etc.) and functions (and associated screens and screen components).
  • Provides administrators within each customer organisation with a web-based user administration interface to manage users and user groups, and to control access entitlements and permissions.
  • Maintains an audit log of all data edits.

The architecture of eSpatial OnDemand GIS, combined with the multi-location backup strategy, is designed to deliver enhanced levels of reliability and security. For example, while issues were reported with Amazon EC2 in April 2011, eSpatial OnDemand GIS did not experience any loss of availability.

We engage respected third party security consultants to audit the security of eSpatial OnDemand GIS, and conduct penetration tests.

Interested in finding out more?

Download eSpatial’s security statement [PDF, 305KB]