VoltDB believes in keeping your system secure. To that end, we focus on doing two things well:
- We give you industry standard tools and technology to make your system secure.
- We give you auditing and observability tools to understand how your system is being used, to verify that all access and usage is valid, and to understand when attempts are made to compromise your system.
Customer Proof Points
Through customers like Nokia, HPe and Openet, a significant amount of the world’s mobile traffic involves VoltDB in some way.
Through customers like Huawei and some unamed global banks, hundreds of millions of financial transactions pass through VoltDB daily.
Each of the customers have security validation processes that VoltDB met and exceeded.
Rather than assign permissions directly to users, VoltDB follows best practices and assigns permissions to roles and then roles to users.
Several built-in roles make getting started simpler, such as administrators and read-only users. But roles can be customized to have very fine grained permissions if needed.
VoltDB generates log lines for many events that contribute to a comprehensive picture of how users are using, or attempting to use your system.
Log events are generated for successful and failed login attempts, all configuration changes or attempted changes, as well as all administrative actions or attempted actions. In each case, the log message will contain a timestamp, the username and any connection-related info available, starting with the remote IP address and port.
The VoltDB server supports TLS 1.2 (the latest and most secure version which replaces the older SSL) for all client-server communication and for all administration tools, like our web dashboard, the Volt Management Center.
When combined with TLS encryption, VoltDB’s default password-based security can be quite secure, VoltDB optionally supports Kerberos technology for authentication as well. This allows for more centralized authentication and account management, and enables some additional flexibility in security measures.