This previous February, we laid out our plan to not solely meet probably the most stringent safety necessities, however far exceed them. Regardless of our humble beginnings, Frame.io is now supporting video workflows at Fortune 100 firms everywhere in the world. Retaining your content material secure and obtainable is a accountability we take very significantly.
I’m excited to announce that Body.io is now SOC 2 TYPE 1 compliant. This main milestone is one among many on our ongoing safety roadmap.
As a part of this compliance, we have now undergone a rigorous audit performed by a good unbiased third-party auditor in accordance with American Institute of Licensed Public Accountants (AICPA). The audit course of evaluated Body.io towards service controls derived from three key belief rules of SOC2—safety, availability, and confidentiality.
These safety requirements prolong past the know-how and processes we use to safe and encrypt your media on Body.io; it goes via to the very DNA of each a part of the corporate—from the coaching of our staff, to the distribution of firm software program and {hardware}, and even to the protocols for friends that go to our NY headquarters.
New Safety Options
Along with the rigorous safety requirements we’ve met, we’re additionally releasing new Enterprise options that may assist within the safe distribution and administration of your knowledge.
Visible Watermarking
Now admins and workforce managers can configure watermarks that may burn into any media their customers add. Admins can sort out their very own customized watermark, set its opacity, and select the place within the body they need the watermark to look. When you’ve configured your watermark in settings, it’s routinely burned into any video or picture recordsdata your customers add.
Body.io Watermarking helps empower admins to discourage any unauthorized sharing of content material that their customers have uploaded to Body.io. It’s an enormous step ahead in our safety providing, and we’re excited to get it in your palms.
Asset Lifecycle Administration
There’s no extra worrying about clearing out outdated content material from Body.io—we do it for you on an automatic cadence that you simply outline. This optionally available characteristic permits admins and workforce managers to set a restrict on the variety of days a given asset will stay in Body.io. As soon as an asset hits that restrict, Body.io routinely tender deletes it so the account supervisor doesn’t should.
If you end up needing an asset that was deleted lately, concern not: you may leap into your challenge’s trash can and restore the asset as much as 30 days after it was deleted.
Asset Lifecycle Administration may be disabled on a per-project foundation at any time, so in the event you’re a workforce that likes to maintain evergreen or library belongings in a single challenge, you’ve that choice.
Turning into an Trade Function Mannequin and Thought Chief
To proceed main the market in end-to-end product safety, we should constantly innovate our intrusion detection methods. We monitor knowledge generated by our instruments to find assaults in a well timed method. It’s of such integral significance, our workforce constructed a customized menace detection resolution that’s uniquely tuned to our personal programs. This gives an added layer of safety we couldn’t have completed with third-party options. This technique has additionally undergone the AICPA audit and contributed to assembly compliance.
After working our menace detection system for a number of months, we’ve authored a analysis paper titled “Go Serverless: Securing Cloud through Serverless Design Patterns.” We submitted it to HotCloud 2018, a prime peer-reviewed cloud programs workshop, which accepted the paper to be printed. We shall be presenting our work within the HotCloud workshop in July, and the ultimate model of the analysis paper may be downloaded here.
This paper demonstrates the cutting-edge info safety program at Body.io, and our dedication to proceed demonstrating the safety thought management on this house by researching, innovating, and sharing our work with the broader group.
Workforce Effort
An enormous quantity of thanks and gratitude should exit to the workforce right here at Body.io who’ve labored so tirelessly—specifically, our Head of Info Safety, Abhinav Srivastava. Abhinav joined Body.io this previous September from the AT&T Analysis Lab the place he was main numerous safety analysis efforts. Abhinav holds a Ph.D in Pc Science from Georgia Institute of Know-how and has printed 30 safety analysis papers that are widely known by the cyber safety group.
What’s Subsequent?
Persevering with Our Funding in Info Safety, we’re additionally working to hitch the Trusted Associate Networok (TPN), a joint effort between the MPAA and the CDSA.
We received’t cease till Body.io is probably the most safe platform for the video collaboration market.
