Today, we’re announcing two new features that give customers more control over the security of their data. This announcement is another exciting milestone for our customers and us as we help them gain greater confidence in building their business-critical applications to store their confidential data in Quick Base.
As companies continue to migrate their proprietary and sensitive data to the cloud, they are quickly acquiring a broad array of SaaS tools. With this trend, CIOs and CSOs have a strong mandate to ensure their data is not only safe, but they also have more control over the security of their data. This need is driven by either external regulatory policies or internal security standards.
Customers want to ensure their technology vendors have a strong track record on security and that they are investing in innovating for the future. Quick Base already has a strong track record over the years in delivering state-of-the-art security and protection for our service and our customers. We currently offer industry-leading standards for best-in-class security controls within the platform, a highly secure approach to physical data centers and data encryption and leverage best-of-breed security and service monitoring tools.
However, security threats continue to evolve, and companies need to minimize the low-likelihood, but high-potential cost security risks associated with their data.
As Quick Base customers continue to build more applications to store their confidential data, they are looking to get additional security controls. To meet those needs, we are announcing the following two features.
1. Advanced Data Encryption
Quick Base currently encrypts all customer data in transit (data moving from one location to another across the internet) and at rest (data stored on servers). Quick Base encrypts data in transit using TLS certificate and is one of the market-leading vendors that encrypt app data and file attachments at rest using best-in-class AES 256-bit encryption key hosted by Quick Base.
And, while we do provide best-in-class data encryption, customers want more control over how their data is encrypted at rest in Quick Base. This need for security control is either driven by external regulations (e.g. HIPAA, GLBA, SOX, etc.) or customer’s internal security standards. To meet those needs, we’re announcing an Advanced Data Encryption feature that enables customers to encrypt their data at rest using a customer-specific encryption key that they can change on their schedule.
This feature comes with two configurations: (1) Customer-specific unique encryption key provided and hosted by Quick Base and the key can be changed by customers on their schedule. This configuration is available for our customers today. (2) Customer-specific unique encryption key provided and hosted by customers in their own Key Management System (KMS) or Hardware Security Module (HSM). This configuration will be available later this winter.
While this feature does not change the strength of the encryption key used to encrypt data at rest (i.e., AES 256-bit key), it does give our security-minded customers more control over encryption of their data in Quick Base. Even though other low-code app development platforms provide this advanced encryption feature, their default encryption key is usually of lower strength (i.e., AES 128-bit key) and their higher strength encryption key often compromises certain out of the box functionality.
2. Integration with Identity Management Systems
Quick Base already integrates with customer’s corporate directories such as Microsoft Active Directory via SAML or LDAP for managing who has access to the platform, making it easier for users to leverage their existing corporate credentials.
While we do support integration with corporate directories for managing user access, customers want more control over who has access to Quick Base by automatically provisioning users from a central Identity Management system. To meet those needs and help customers reduce risks and lower costs, we’re providing them the ability to integrate Quick Base with Identity & Access Management (IAM) systems using System for Cross-domain Identity Management (SCIM), an open standard, for syncing user identity with their corporate directory and automatically provisioning users from a single central identity provider.
This feature currently integrates with 2 IAM systems (such as Okta, OneLogin) using pre-built connectors (agents). This feature supports the provisioning of new users, updating user attributes (first name, last name, email, username), and de-provisioning existing users. Later this winter, we will also support syncing of groups within IAM systems to those in Quick Base. For those customers that use other IAM systems such as Ping, Azure, etc., we are also providing SCIM 2.0 APIs with endpoints that customers can leverage to integrate with.
Security is always top of mind for our customers, and these features give them increased confidence and peace of mind to build higher value business-critical applications that often include regulated, proprietary, and sensitive data.
With today’s announcement, we continue to be well positioned to provide the agility customers need to build and manage their applications across their organization on a platform sanctioned by IT. With over 6,000 customers, we continue to be the platform of choice for organizations that want to drive real results fast.
Interested in learning more? Contact us today and we’ll have your account team reach out!