Blaze’s) infrastructure ensures the highest level of security with a world class network, data and physical security system.
BLAZE ensures the highest levels of security to meet and exceed financial industry and federal regulatory standards.
BLAZE ’s security meets industry standards such as PCI (Personal Cardholder Information). BLAZE ’s 3rdParty vendors are also required to be PCI certified (as needed) or meet more stringent industry standards such as SAS 70 Type II, ISO 17799 Compliance, and Visa CISP Level One Compliance (as needed).
BLAZE secure network infrastructure includes:
l Multifactor authentication, Client Access Control and Privileges
l 24x7 Intrusion Detection
l Password Protection and Aging
l Third Party Audits and Inspections
l Data Security
l Data Integrity
l Physical Security
l Remote OTA Lock
Secure Network Infrastructure
Multifactor Authentication, Continuous Client Authentication and Access –All client-server interaction is based on multifactor client-side authentication. This prevents client-spoofing and ensure access-control are enforced in real-time
Firewalls - External access to BLAZE 's networks is controlled by several layers of firewalls and routers--all configured according to industry best practices. Administrative access to the production infrastructure is restricted to a dedicated production-access infrastructure and requires multiple authentication steps. Additional firewalls are used to secure access to the BLAZE database layer from the application layer.
Intrusion Detection - BLAZE 's entire production network is monitored for intrusion attempts 24x7.
Password Protection - User passwords are transmitted in encrypted format at all times. They are encrypted in both external network transmissions and in network links internal to BLAZE 's production infrastructure while they reside in storage in BLAZE 's databases. The entire BLAZE production infrastructure is housed in Level-3 Communications secure hosting facilities.
SSL - All user-related information transferred between a user's client (mobile application, web browser) and BLAZE 's servers is protected through Secure Socket Layer (SSL). SSL creates an encrypted connection between the mobile client (and web client) and the BLAZE servers. BLAZE employs certificates for this service.
Third Party Audits and Inspections - The BLAZE security infrastructure is regularly reviewed and audited by firms that specialize in security processes and technologies, including semi-annual audits of network and security policies and procedures by industry recognized IT security auditors.
Data Security - At the data security level, the BLAZE Platform encrypts all user authentication data. This authentication data is stored in databases housed in BLAZE 's secure hosting facilities and then transmitted securely within the network.
Data Integrity - BLAZE 's technology uniquely "understands" web content and knows what information to look for and display for user accounts. If, for any reason, BLAZE cannot access or update a user's personal information, it will revert back to the last successful update to ensure no inaccurate information is presented.
Physical Security - BLAZE production servers are stored in a secure co-location facility. Access to the facility requires both card key and biometrics (hand scanning). Security personnel monitor the facility 24 hours a day.
Remote OTA Lock – In the event you have temporarily misplaced, loaned or lost you phone, you can call our help desk or reset the Blaze service PIN remotely (via the web portal) and immediately enforce Client-side PIN authentication. For NFC-enabled phones, it is possible to permanently shutdown the payment application to prevent fraudulent access to your payment credentials.
Reliability- BLAZE Servers are full-mirrored and have hot standbys.
Performance- BLAZE ’s network connection supports 100 Mbps of bandwidth.