Shared Responsibility for SingleStoreDB Cloud
SingleStoreDB Cloud has built in security controls that makes it a secure environment to run customer workloads. However the burden of keeping it secure is shared between customers and the SingleStoreDB Cloud team. SingleStoreDB Cloud is designed with strong security by default so that there is minimal burden on customers. The default configuration includes encryption at rest, encryption in transit, removal of public access, and deployment within strong network boundaries. Customers are responsible for configuring the necessary levels of control which based on the security posture of their organization.
Responsibility | Customer | SingleStoreDB Cloud |
---|---|---|
Cloud infrastructure physical security |
|
|
Customer data, accounts and identities |
|
|
Network isolation and connectivity |
|
|
SingleStoreDB database access |
| |
API controls/access |
|
|
Data encryption (in transit and at Rest) and BYOK |
|
|
Granular auditing |
|
|
Performance monitoring/alerting |
|
|
Security patches and maintenance |
| |
Backups |
|
|