Understanding Shared Responsibility in Cloud Security and Compliance

At GigaLayer, we believe in a collaborative approach to security and compliance in the cloud. This shared responsibility model is designed to maximize the benefits of cloud computing while minimizing risks for both GigaLayer and our customers.

GigaLayer's Role: Infrastructure and Network Accessibility

GigaLayer takes full responsibility for the operational integrity of the cloud infrastructure. This includes:

• Network and Infrastructure Management: We ensure the entire hosting infrastructure, including hardware, software, and networking, is robust, secure, and continuously operational. This infrastructure forms the backbone that supports your applications and services on the World Wide Web (WWW).
• Operating System and Data Center Control: Our team manages and controls the operating systems and physical data centres hosted by our services.
• Accessibility and Uptime: We guarantee high availability and accessibility of our network and services, ensuring your applications are always online.

Customer's Role: Hosted Applications and Configurations

As a customer of GigaLayer, your responsibilities vary based on the services you utilize. Key areas include:

• Application Management: You are responsible for your applications' installation, management, and security. This includes regular updates and patches to ensure ongoing safety and functionality.
• Configuration and Security Settings: Proper configuration of your hosting environment is crucial. For instance, in a Shared Hosting cPanel account, you should set correct file and folder permissions, secure configuration files (ideally outside the public_html directory or with restricted permissions like chmod 400), and implement measures like .htaccess to prevent hotlinking.
• Proactive Monitoring: Regularly monitor your applications and hosted services. Stay informed about any potential vulnerabilities and act swiftly to address them.
• Knowledge and Compliance: Maintain a thorough understanding of your applications, including their security requirements. Treat every application as if it were in a production environment with high public visibility, adhering to best practices for security and compliance.

Collaborative Efforts for Optimal Security

• Abuse Monitoring: GigaLayer actively monitors for abuse of services to protect all customers on our network. We encourage you to report any suspicious activities immediately.
• Education and Support: We provide resources to help you understand and fulfil your responsibilities. Stay informed about best practices and emerging threats.

Conclusion

In the shared responsibility model, GigaLayer and our customers play critical roles in ensuring the security and compliance of cloud-hosted services. By understanding and fulfilling your responsibilities, you contribute to a secure and reliable cloud environment for everyone.

Don't hesitate to contact our support team for further information or assistance.