221 Real Estate uses Amazon’s AWS platform and infrastructure. 221 Real Estate employees do not have any physical access to our production environment. Cloud security is the highest priority at AWS. As an AWS customer, we are benefitted from a data center and network architecture built to meet the requirements of the most security-sensitive organizations. “Amazon has many years of experience in designing, constructing, and operating large-scale data centers. This experience has been applied to the AWS platform and infrastructure. AWS data centers are housed in nondescript facilities, with military grade perimeter control berms. Physical access is strictly controlled both at the perimeter and at building ingress points by professional security staff utilizing video surveillance, state of the art intrusion detection systems, and other electronic means. Authorized staff must pass two-factor authentication no fewer than three times to access data center floors. All visitors and contractors are required to present identification and are signed in. They are also continually escorted by authorized staff.” In addition to physical security, being on AWS platform also provides us significant protection against traditional network security issues on the infrastructure including: Distributed Denial Of Service (DDoS) Attacks, Man In the Middle (MITM) Attacks, Port Scanning, Packet sniffing by other tenants
The document files held in the system are themselves encrypted, so in the extremely unlikely event of the data center security being breached, and access to the document files obtained, their content remains secure. Even trusted data center staff will not have access to document content. All user credentials are hashed with a one way hash that even we cannot decode.