Alliance ID Knowledgebase
  • Documentation Overview
  • Service Status
  • Base Settings
    • Carts
      • Guest Carts
      • Holder Carts
      • Tenant Carts
    • Countries and currency exchange
  • Alliance ID Accounts
    • Your Alliance ID
      • Create your Alliance ID
        • Multi-Factor Authentication
      • Your profile
        • Tenant Modes
          • Careers Profile
          • Learner Profile
      • Your Wallet
      • Your Wishlists
      • Your Social Profile
        • Groups
        • Follows and followers
      • Update your settings
      • Manage your addresses
      • Update your Network Data
      • Manage your Sensitive Data
      • Communication Preferences
      • Password Recovery / Update
  • Infinity Comex Store
    • Products
      • Features and attributes
      • Product disclaimers
    • Product Orders
      • Buying products on your behalf
      • Buying products on behalf of your business
    • Pricing/Promos
      • Using a promo code
      • Different price than advertised
    • Returns and refunds
      • Refunds, partial refunds, and restocking fees
      • Price matching
      • Price Match Guarantee
      • Return Policy
    • iComex for Business
  • Business Accounts
    • Create a new business account
    • Manage your business accounts
      • Select a business you have access to.
      • Your business wallet
      • Business Social Profiles
  • Services Marketplace
    • Overview
    • Services
      • Stack selection
    • Project Services Management
  • ComputeWorks Suite
    • ComputeWorks Suite
      • ComputeWorks CRM
        • Organization
        • Contacts
        • Deal Units
        • Direct Contacts
        • Flows
        • Sales Entities
        • Tasks
        • Teams
      • ComputeWorks Marketing
      • ComputeWorks Talent
      • ComputeWorks Accounting
  • Billing
    • Orders
    • Payments
      • Payment methods
  • Sales and Support
    • Support Tools
      • Support Tickets
      • Security Features
      • Changelog
    • Sales Tools
      • Microsoft FastTrack Assistance
      • Value Discovery Workshop
      • Customer Immersion Experience
      • Value Calculator
      • Service-level agreements (SLAs)
  • Developers
    • Documentation
    • External Authentication Flow
    • Application Registration
    • API Reference
    • AiD API WordBook
  • Credits
    • Libraries and dependences
    • Graphic & Animation Resources
    • SDKs and APIs
    • Developers
Powered by GitBook
On this page
  • Encryption at rest
  • Encryption in transit
  • CORS support
  • Role-based access control

Was this helpful?

  1. Sales and Support
  2. Support Tools

Security Features

Encryption at rest

All files sended to our applications are automatically encrypted with a 256-bit Advanced Encryption Standard (AES) cipher. SSE automatically encrypts data when writing it to Storage. When you read your files, our storage decrypts the data before returning it. This process incurs no additional charges and doesn't degrade performance. This feature can't be disabled.

Encryption in transit

We keep your data secure by enabling transport-level security between our applications and the client. We ALWAYS use HTTPS to secure communication over the public internet. When you call the REST APIs to access objects in storage accounts or our databases, we enforce the use of HTTPS by requiring secure transfer and connections that use HTTP will be refused and redirected.

CORS support

We store several website asset types in Storage. These types include images and videos. To secure browser apps, we locks GET requests down to specific domains.

Our storage supports cross-domain access through cross-origin resource sharing (CORS). CORS uses HTTP headers so that a web application at one domain can access resources from a server at a different domain. By using CORS, our web apps ensure that tenants load only authorized content from our sources.

When you create a business application. you will be able to specify your domains in order for us to verify your domains and set CORS flags.

Role-based access control

To access data in an Alliance ID Tenant account, the client makes a request over HTTP or HTTPS. Every request to a secure resource must be authorized. The service ensures that the client has the permissions required to access the data.

Our applications supports role-based access control (RBAC) for both resource management and data operations.

PreviousSupport TicketsNextChangelog

Last updated 6 years ago

Was this helpful?