User Data Security: Everything You Need to Know

Kelly Strain

Software security is a big deal (167 million LinkedIn user account details are currently for sale on the dark web). Most applications fail to secure user data sufficiently, leaving them vulnerable to attacks resulting in dire consequences.

To combat this issue, we are excited to announce the release of our complete 2016 Guide to User Data Security. The guide compiles everything our development team knows about server and application security and delivers step-by-step code to help you secure your user data. It covers key concepts such as server architecture, firewalling, intrusion detection, password security, two-factor authentication, social hacks, SQL injections and more.

unspecified-3

Get Started

Read the full guide online here: /guides/2016-guide-to-user-data-security

Download the guide here: /resources/2016-guide-to-user-data-security.pdf

TL;DR

Check out our Github project created around this guide. This project contains a set of scripts you can execute from your local computer to secure a remote server.

Github project: https://github.com/inversoft/2016-security-scripts

Comments? Feel free to discuss our Guide to User Data Security on HackerNews: https://news.ycombinator.com/item?id=12046028

Aside: Security is Easy with Passport

Passport stores all user data in a centralized location with built-in industry leading security.

Security Details:

  • Passport uses a strong encryption algorithm to store user passwords.  Even if the user database is compromised, it will still be nearly impossible to reverse engineer a user password from the stored hash.
  • Enable two-factor authentication with Passport. Two-factor authentication enhances user login security by requiring something the user knows (password) with something the user possesses. Using two-factor authentication allows a user account to remain secure even if their password has been compromised.
  • When you install Passport you can secure your servers according to your information security protocols (Passport is available to host on your servers or we will host it for you in our private cloud).

Have a look at our docs for some suggestions on securing access to your user database or get in touch with us to learn more.