The Technology

Carpathia Hosting utilizes commercial-, federal- and Department of Defense (DoD)- approved controls, tools and technologies that map to each specific compliance guideline (NIST 800.53, DIACAP 8500.2, PCI, HIPAA, SOX and ISO 27001) helping to ensure your system achieves and maintains compliance.   Carpathia’s controls, tools and technologies ensure the confidentiality, integrity and availability of customer’s critical and sensitive information.


Confidentiality:
To maintain confidentiality of customer’s information systems, Carpathia deploys the following technologies:

  • Lampertz SCIF Compliant Vaults
  • Biometric scanners
  • Card key readers
  • RSA Tokens
  • SSL VPN Encryption
  • Encrypted Databases and Backups
  • Secure access controlled server rooms
  • Network security
  • Hardened Operating System
  • Pan, zoom and tilt CCTV
  • Antivirus
  • NIDS and HIDS


Integrity:

  • Best of breed network gear with CRC checking
  • Firewalls
  • Network separation with isolated VLAN’s
  • Least privilege access via 2 factor authentication with RSA token
  • RAID technology with CRC checking


Availability:

  • Daily backups of all customer and support systems
  • N+2 on all critical facility infrastructure: power and HVAC
  • Three geographically diverse ISP fiber rings
  • Redundant monitoring systems
  • Multiple data centers for DR/COOP
  • Best of breed server technologies with low meantime-to-failure
  • RAID technology
  • Load balancing and clustered systems
  • 24x7x365 monitoring of all critical resources


All customer system, network and IDS logs are saved to Carpathia’s SecureView Portal for audit and compliance purposes.


For more information on Carpathia’s compliance technologies email us at compliance@carpathia.com

learn more Federal Compliance White Paper Commercial Compliance White Paper
   
engage
twitter facebook linkedin
connect
facebook share twitter share linkedin stumble digg delicious reddit mail