1: Getting Started
      Back to home
      1. Home
      2. 1: Getting Started

      Rayven Cyber Security Overview

      Rayven places security at the forefront of its platform, ensuring that data is protected at every point within the IoT environment. Our proprietary security architecture and the use of Microsoft Azure Security features provide a robust framework for



      How Rayven Protects Data

      1. Private Cloud Hosting

      Rayven solutions are hosted in a secure, private cloud environment. This ensures that all data processing and storage occur in a tightly controlled infrastructure, isolated from other environments.

      2. Data Encryption in Transit

      • Device-to-cloud encryption: Rayven uses SHA-256 with RSA encryption to secure data transmission from devices to the cloud (device-dependent).
      • Device authentication: Devices are authenticated using device keys for an added layer of protection (device-dependent).
      • 256-bit SSL encryption: End-user devices (e.g., PCs, tablets, mobile phones) and the cloud are connected through 256-bit SSL encryption, ensuring data remains secure as it travels.

      3. User Access Revalidation

      Rayven dynamically validates user access through APIs, ensuring secure, real-time control over user roles and permissions:

      • API-based revalidation: User permissions and role assessments are validated against user data via API.
      • Real-time updates: Access validation is dynamically updated using API (push or pull).

      4. Compulsory Password Requirements

      Rayven enforces strict password requirements to protect user accounts:

      • Minimum of 8 characters.
      • At least one uppercase and one lowercase character.
      • At least one number and one special character.

      5. User Data Encryption at Rest

      Rayven encrypts all user data at rest to prevent unauthorized access:

      • Triple DES encryption for secure data storage.
      • One-way SHA256 hash for password encryption, ensuring credentials cannot be reversed or compromised.

      6. Multiple Methods of API Authentication

      Rayven offers flexible API authentication methods:

      • Username/password authentication.
      • Multifactor authentication for enhanced security.
      • Token-based authentication to protect against unauthorized access.

      7. Single Sign-On (SSO)

      Rayven supports Single Sign-On (SSO) configurations, enabling seamless and secure user authentication across multiple systems.

      8. Security Event Monitoring and Incident Handling

      • Dedicated event monitoring: Rayven monitors both user and device activity in real-time.
      • Incident handling: Rayven’s Flow Builder allows custom workflows for incident handling, ensuring quick response and resolution.

      9. Data Confidentiality, Integrity, and Availability

      Rayven employs industry-leading encryption protocols to protect data at every stage:

      • In transit: SHA-256 with RSA encryption secures data as it travels from devices to the cloud.
      • At rest: Optional 256-bit AES encryption ensures data remains secure when stored.
      • During use: SHA-256 with RSA encryption protects data when accessed from the cloud to end-user devices.

      10. Device Security Health Checks

      Rayven continuously monitors and assesses the security of devices:

      • Automated security checks: Devices undergo security health checks through automated polling and pull requests (device-dependent).
      • Rayven Defender: Monitors data flow to detect anomalies, including signs of device tampering or error.

      Security Features Supported by Rayven

      Rayven’s platform integrates various industry-standard security protocols to protect IoT environments:

      • TLS Handshake Protocol: Ensures secure communication between clients and servers by authenticating both parties and selecting encryption algorithms before transmitting data.
      • TLS Record Protocol: Provides encryption and data encapsulation over the TCP protocol to maintain secure and reliable connections.
      • SSL Encryption: Secures data transmissions between user-operated devices and the Rayven platform.
      • Certificate-based Device Authentication: Uses private and public key pairs for device authentication at the physical layer, ensuring that private keys remain secure.
      • Bearer Tokens: Devices and services authenticate without sending keys over the network, reducing the risk of exposure.
      • Database Encryption: Encrypts structured database contents at rest, ensuring that data remains protected (available for private cloud customers).
      • SFTP: Provides secure file transfers between local and remote systems.
      • VPN: Offers whole-server security, enabling devices and users to securely connect to the Rayven platform (available for private cloud customers).

      Microsoft Azure Security Integration

      In addition to Rayven’s proprietary security features, the platform leverages Microsoft Azure’s robust security offerings, further enhancing the protection of your data:

      • Azure Security Center: Identifies security risks and provides recommendations, including tools for threat management, alerts, and access controls.
      • Azure Policy: Enforces security-focused policies, restricting certain configurations like public IPs for VMs and managing permissions within subscriptions.
      • Role-Based Access Control (RBAC): Defines and enforces specialized roles for Azure resources, utilizing pre-defined or custom roles for enhanced control.
      • Resource Locks: Adds an extra layer of protection by preventing unauthorized changes to Azure resources.
      • Custom Dashboards: Allows users to create and monitor security alerts for Azure services, health issues, and network changes.

      Summary

      Rayven’s platform offers comprehensive, end-to-end security for your IoT environment, utilizing a combination of proprietary security measures and Microsoft Azure’s security framework. Whether it’s protecting data in transit, at rest, or during use, Rayven ensures that your solutions remain secure, scalable, and resilient to threats.

      For more information on Rayven’s security architecture or to configure security settings, please contact your Rayven Account Manager.