Product Security

We segregate the customer environments into multiple cloud regions and between PROD and non-PROD environments from external networks to minimize the risk of unauthorized access.

We implement firewalls, security groups, and IDS to monitor and filter network traffic, blocking malicious activities and providing real-time alerts.

We use Keycloak which provides strong authentication, user management, user federation, and fine-grained authorization. Spark supports Single-Sign-On (SSO) and identity brokering with your existing OpenID Connect and SAML 2.0.

We encrypt data at rest using the most powerful and reliable encryption algorithms (AES 256) and we do it at the application level as well as the database level to secure our data. Data in transit is secured by TLS 1.3, a more secure and efficient choice for protecting data in transit.

Automatic backups are taken continuously (near real-time) and incrementally. Our database is continuously backed up and we can restore data to any point in time within the backup retention period. Incremental backup along with full backup is done with a snapshot every 24 h.

In the event of a disaster, the priority of Coherent is to prevent the loss of life; Coherent will ensure that all employees and any other individuals on the premises or at any impacted area are safe and secure.

The next goal is to bring the Coherent Spark application back to business as usual as quickly as possible. Coherent Spark follows an active/passive and pilot light approach.

We committed to a Recovery Point Objective (RPO) of 10 min and Recovery Time Objective (RTO) of 4 h.