Cyber Security & Performance
We take cyber security and performance very seriously at the gigexchange, which is why we have partnered with Cloudflare, Stripe & google cloud firestore database to secure our web application and payments section.
Our site has been penetration tested and signed off by leading NZ security team …
Our developers work to the highest best practise principles to ensure your data is safe.
All web traffic is encrypted by HTTPS (HTTP encrypted using TLS 1.2+)
We abide by HSTS principles
All API’s served over TLS 1.2+
All client JS are served over TLS 1.2+
Why Cloudflare?
Why Stripe?
Why firestore?
Our site has been penetration tested and signed off by leading NZ security team …
Our developers work to the highest best practise principles to ensure your data is safe.
All web traffic is encrypted by HTTPS (HTTP encrypted using TLS 1.2+)
We abide by HSTS principles
All API’s served over TLS 1.2+
All client JS are served over TLS 1.2+
Why Cloudflare?
- Eliminate security induced latencies by integrating with Cloudflare’s included performance services.
- Fast, Global Content Delivery Network
- We have built a global network designed to optimize security, performance and reliability, without the bloat of legacy technologies.
- Serverless on Cloudflare
- Cloudflare Workers lets developers deploy JavaScript code on Cloudflare's network, closer to the end user.
- Ensure Application Availability
- Improve the availability of applications affected by overloaded or unavailable infrastructure.
- Unmetered Mitigation of DDoS Attacks
- Web application firewall (WAF)
- SSL / TLS 1.2 & 1.3
- PCI DSS 3.2 compliance
- Distributed Content Delivery Network (CDN) over 165 worldwide datacentres
- Service level agreement
Why Stripe?
- Stripe has been audited by a PCI-certified auditor and is certified to PCI Service Provider Level 1. This is the most stringent level of certification available in the payments industry. To accomplish this, we make use of best-in-class security tools and practices to maintain a high level of security at Stripe.
Why firestore?
- Cloud Firestore is Firebase's new flagship database for mobile app development. It improves on the successes of the Realtime Database with a new, more intuitive data model. Cloud Firestore also features richer, faster queries and scales better than the Realtime Database.
- Cloud Firestore is a multi-region solution that scales automatically.
- Scales completely automatically. Currently, scaling limits are around 1 million concurrent connections and 10,000 writes/second. We plan to increase these limits in the future.
- Simpler, more powerful security for mobile, web, and server SDKs.
- Mobile and web SDKs use Cloud Firestore Security Rules. Server SDKs use Identity and Access Management (IAM).
- Rules don't cascade unless you use a wildcard.
- Data validation happens automatically.
- Rules can constrain queries: If a query's results might contain data the user doesn't have access to, the entire query fails.