Highest Level
of Data Protection
The Credibl mobile application is designed to store and manage health information of users securely to ensure the confidentiality, integrity, and availability of sensitive user data.
Data is Safe within
the Credibl Vault
SSL
Channel
The mobile application communicates with the backend over and SSL Channel. SSL/TLS encryption is employed to secure the data in transit, preventing eavesdropping and data interception. The load balancers are configured with the latest TLS version (TLS 1.3) to ensure the safety of data in transmission.
Encryption
At Rest
User health information stored in RDS is encrypted at rest. Amazon RDS encrypted DB instances use the industry standard AES-256 encryption algorithm to encrypt the data on the server that hosts Amazon RDS DB instances. Custom AWS KMS is used to manage encryption keys, providing a secure key management solution.
Security
Groups
The load balancer, EC2 and RDS instances are protected by security groups. Security groups define inbound and outbound traffic rules based on protocols, ports, and IP addresses. By properly configuring security groups, access is restricted to only necessary connections, minimizing the attack surface and enhancing overall security.
AWS
Secrets Manager
All credentials required by the application, including API keys and database access credentials, are securely stored in AWS Secrets Manager. AWS Secrets Manager offers a secure and scalable solution for storing sensitive information. Access to each secret is restricted to only the required entities, reducing the risk of unauthorized access.
Private Subnets &
Private Links
RDS instances are hosted in private subnets, which are isolated from the public internet. Communication with the database is established using private links, ensuring that only authorized entities within the network can access the data. This architecture prevents direct public access to the database, reducing the risk of unauthorized intrusion.
Role-Based
Privileges
RDS instances are hosted in private subnets, which are isolated from the public internet. Communication with the database is established using private links, ensuring that only authorized entities within the network can access the data. This architecture prevents direct public access to the database, reducing the risk of unauthorized intrusion.
Credibl
Architecture
The Credibl mobile application communicates with a backend hosted in AWS over a Secure Sockets Layer (SSL) channel. The architecture includes the following components:
Load Balancer
The load balancer acts as the entry point for traffic coming from the mobile application. It is configured with security groups to control inbound and outbound traffic
EC2 Instances
The application backend runs on Amazon Elastic Compute Cloud (EC2) instances. These instances are protected with security groups that define network access control rules, allowing only necessary connections while blocking unauthorized access.
RDS
User health information is stored in RDS, a highly scalable and durable SQL database service provided by AWS. RDS is hosted in private subnets and communication with the database is established using private links. This setup prevents direct public access to the database, reducing the risk of unauthorized access.
Encryption
Data stored in AWS RDS is encrypted to ensure data confidentiality. Custom AWS Key Management Service (KMS) is used to manage encryption keys. RDS enables encryption at rest, providing an additional layer of security to protect user information from unauthorized access.
We Are the Most Secure Health Database in the World
Data security is our core. Our platform prioritizes the utmost security to safeguard your sensitive data. We adhere to the highest industry standards, including compliance with HIPAA (Health Insurance Portability and Accountability Act) and GDPR (General Data Protection Regulation) regulations.
LEARN MOREGet in touch with us about anything.
Head office:Adelaide | Los Angeles
Email address :
hello@credibl.ai