Security Matters

Clari is a modern Cloud-based architecture built with industry-standard technologies and services, ensuring enterprise-grade security and data protection for our customers.

Download the PDF

Clari Web

  • Encrypted Sessions 256-bit-SSL 3+/TLS 1.2
  • Encrypted Cookies for Sessions
  • Strong Authentication
  • SAML 2.0 – SSO Integration
  • Oauth Client Access Protocols
  • OWASP Top 10 verified
  • IP Address Range lock-down
  • Certificate Verification
  • Secure Access and Activity Log
  • Session Timeout
  • URL Access Restrictions

Clari Mobile

  • Encrypted Sessions 256-bit-SSL 3+/TLS 1.2
  • Certificate Pinning for MiM attack
  • Encrypted Cookies for Sessions
  • Strong Authentication
  • SAML 2.0 – SSO Integration
  • Oauth Client Access Protocols
  • Source Code Hardening
  • Clean Data principles
  • IP Address Range lock-down
  • Certificate Verification
  • Secure Access and Activity Log
  • Transient URLs
  • URL Access Restrictions
    Secure Cloud
  • IP Address Range Restrictions
  • ISO 27001
  • SOC 1 and SOC 2/SSAE 16/ISAE 3402
  • PCI Level 1
  • FISMA Moderate
  • Dyno Isolation
  • Host Whitelist
  • Active Session Monitoring and Timeouts
  • Inbound and outbound filtering
    Secure Analytics
  • ISO 27001
  • SOC 1 and SOC 2/SSAE 16/ISAE 3402
  • AWS Trust Advisor
  • Nessus Vulnerability Scans
    Secure Data Management
  • User Credentials encrypted with AES 256-bit encryption
  • Access/Refresh tokens encrypted with AES 256-bit encryption
  • Access restrictions to only open application IP Servers
  • Encrypted S3
  • Secure key vault
  • Private Storage Cloud option
  • Two-factor authentication for admin access
    Postgres:
  • Encrypted database connections
  • Field-level encryption
    Cassandra:
  • Node-to-node encrypted connections
  • Client Certificate enablement
    Key Third Party Certifications & Programs
  • ISO 27001
  • Cloud Security Alliance CSA-CAI-1.1
  • Cloud Security Alliance*
  • Amazon Web Services Assessment (using every security feature in the AWS system)
  • American Institute of CPAs Service Organization Controls (SOC 2)
  • Bonsai Web Services Assessment
  • * Amazon Web Services certification applies to all AWS users
  • ISO
  • CSA
  • Amazon Web Services
  • Bonsai
    Vulnerability Scans Passed
  • 24x7x365 security scanning and monitoring
  • Nessus
  • Compass
  • Nessus
  • Security Compass
    Security Standards Adopted
  • Authentication: KMIP (Key Management Interoperability Protocol), ADFS (Active Directory Federation Services)
  • Mobile Security: OAuth, Application Key Management
  • oAuth
  • ADSF
  • Oasis