Hi Fernando,
Here are the answers to the questions you posted.
- In addition to the standard DDoS protection offered by our Cloud provider (Google Cloud), we do have additional rate limiting support.
- Perimeter protection is offered by Firewalls along with standard protection provided by Google cloud.
- We follow the respective Broadcom standard policies for with respect to patching and other updates. Please check the following for additional information regarding the VIP service, support and EULA : https://docs.broadcom.com/doc/validation-and-id-protection-vip-saas-listing & https://ftpdocs.broadcom.com/cadocs/0/contentimages/Maint-HB-RM106.pdf & https://docs.broadcom.com/doc/end-user-agreement-english
- We use FIPS compliant application libraries to protect sensitive information in our database. In addition we have all our data storages - block and cloud storage protected by our Cloud Provider. We are using TLS 1.2 for communications. As for TLS/Certificates and Encryption please check the following report: https://www.ssllabs.com/ssltest/analyze.html?d=manager.vip.symantec.com
- Customer data is compartmentalized in the VIP database. Data access is restricted such that only customers with valid VIP provided credentials can access their data and we have guardrails to prevent cross tenant data access. We use Google as a Cloud provider and data at rest is protected by Google’s comprehensive data at rest security strategy.
- Per our data retention policy, Broadcom will remove customer data after the contract has expired after a waiting period. The customer can use the VIP Manager or API's to retrieve their data prior to the end of the contract. Please check VIP API: https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip/cloud/vip-web-services-and-apis-v127046027-d2278e2328.html
Regards,
Rob
Symantec VIP - Product Management Lead