Laserfiche WebLink
SOLICITATION # CH16012 <br />Salesforce employs cryptographic mechanisms to protect information during transmission. All <br />transmissions between the user and Salesforce are encrypted by default with a 2048- bit Public Key. Our <br />service uses International/Global Step Up certificates. We support one- way TLS, in which customers <br />create secure connections before sharing private data. <br />Secure routing and traffic flow policies ensure that customer traffic is encrypted entering Salesforce until <br />the load balancer decrypts the traffic. The load balancers decrypting the traffic are FIPS 140-2 compliant <br />and are located inside of the Salesforce Government Cloud isolation boundary. <br />�OR1_m IBM <br />NIST SP 800-53 Rev. 4 states in SC-28, "Information at rest refers to the state of information when it is <br />located on a secondary storage device (e.g., disk drive, tape drive) within an organizational information <br />system." SC-28 also states, "Organizations may choose to employ different mechanisms to achieve <br />confidentiality and integrity protections, as appropriate." All secondary storage media (hard drives, disk <br />drives, and tapes) containing customer data are maintained within Salesforce's secure production data <br />centers until the media has been sanitized and destroyed. Salesforce relies on physical access controls as <br />a compensating control to protect the data. <br />carahsoft 20 carahsoft <br />