Security at Artifakt
Keep your website secure and reliable with better operational control and granular access roles. Not only do you benefit from AWS secure data servers, but we also added extra layers of security to safeguard your application from unwarranted connections, leveraging IP address management tools and audit trail monitoring.
Protect your website against external threats
The Artifakt platform is secured by Cloudflare, the global security network leader. We provide your web apps with a Web Application Firewall (WAF) that is enabled by default in all your environments. It prevents attacks caused by DDOS, OWASP-identified attacks, and most common application threats.
Control your website access
We give you control over who can and cannot visit your applications. We added different features to make sure you get the security that best suits your business and your team’s workflows. Create and manage allow/deny listing IP addresses, add a password to sensitive environments or give access to your developers by creating SSH and SFTP accesses.
Free SSL certificates
Artifakt natively offers HTTPS mode for all applications. We provide free SSL certificates so you never have to compromise on security. It automatically gets renewed before its expiration date. We make sure your application stays fully secure with an auto-redirect from HTTP to HTTPS, HSTS policy, and the last version of TLS.
How does Artifakt protect me effectively from attacks?
A Web Application Firewall is enabled by default on all your environments. It allows you to monitor activity on your web application and block malicious attacks.
In order to determine the behavior that is applied to the traffic, a score is automatically applied to each request according to their nature, origin, and type of traffic.
When this score exceeds the vigilance threshold, it trigger three different types of actions at the WAF level.
- Block: The request has triggered a Firewall rule or we know for sure the request is a malicious attack—Artifakt WAF blocks this request.
- Challenge: The request demonstrated previous suspicious activity online or we don’t know for sure the request is malicious—Artifakt WAF displays a CAPTCHA.
- Log: The request is not suspicious enough to trigger a verification mechanism but potentially deserves your attention—Artifakt WAF logs the request.