Phenixio Knowledge Base
  • Overview
  • Getting Started
    • Quick Start
    • How Phenixio Works
    • Security
  • Features
    • Real-time Payments
    • Cross-Border Payments
    • Micropayments
    • Fraud Free Settlements
    • 3rd Party Wallet Compatibility
    • Single-click Checkouts
    • Account Activity & Audits
    • Hardware Wallet Support
    • Automated Withdrawals
    • Currency Rate Conversions
    • Role-Based Access Permission
  • For Developers
    • Sandbox Test Environment
    • Webhooks
    • Payment Event Tokens
    • Access & Refresh Tokens
    • IP Whitelisting
    • Custom Metadata
    • Interactive API Reference
  • Integrations
    • Client Libraries
    • Django
    • Slack
    • Unity
    • WooCommerce
  • Resources
    • Use Cases
    • FAQ
    • Pricing
    • API Reference
    • Dashboard Login
    • Service Status
    • Apply for Pilot Program
    • Support
  • Lightning Technology
    • What is the Lightning Network?
Powered by GitBook
On this page
  • AWS Infrastructure
  • Isolated Services
  • Virtual Private Cloud (VPC)
  • Network
  • Communication over TLS and HTTPS
  • Firewalls
  • Encryption
  • Private Key Protection
  • Protected Passwords
  • Encrypted Disks
  • DevSecOps Principles
  • Security Analysis Tools
  • Service Health Monitoring
  • Automated Tests
  • Automated & Multi-Step Deployments

Was this helpful?

  1. Getting Started

Security

AWS Infrastructure

All our services are hosted on AWS infrastructure.

Isolated Services

All our instances have different credentials and Password logins are disabled. We create additional layer of isolation by running our services inside containers.

Virtual Private Cloud (VPC)

Our services running on private networks. They cannot be accessed from public internet.

Network

Communication over TLS and HTTPS

Our public endpoints can be accessed only through a securely encrypted HTTPS. We support only modern ciphers and TLS v1.2 and above. Our services use a trusted Cerficate Authority and get TLS Certificate Rating A+ from Quallys SSL Labs

Firewalls

No part of our services are arbitarily exposed to internet

Encryption

Private Key Protection

Our private keys are protected by Hardware Security Modules (HSMs) with FIPS-140-2 security standards by NIST. They are never exposed, not even to our internal services.

Protected Passwords

Your password is never stored as a plaintext in our database. We use secure, modern hashing functions to hide your password. Even we don't have access to your password.

Encrypted Disks

The storage devices running our server instances are always encrypted by default

DevSecOps Principles

Security Analysis Tools

We utilize security analysis tools for code analysis and dependency vulnerabilities.

Service Health Monitoring

We use variety of tools for monitoring the health status of our services to make sure all our services up and running.

Automated Tests

We are constantly working on improving our services and building new feature. Rapid development comes with a risk of unintentionally breaking already working parts of the application. We prevent this by having a good test coverage in our development.

Automated & Multi-Step Deployments

We use automated CI/CD pipelines when releasing new updates on our services. Latest version reaches to users on our production servers, only after we make sure everything works as they should. Pipeline environments are Testing > Staging > Production.

PreviousHow Phenixio WorksNextReal-time Payments

Last updated 3 years ago

Was this helpful?