OUR APPROACH
Our approach to security is to use the best open source technology platforms available and to leverage state of the art security protocols and techniques within these platforms. We do not use security by obscurity and neither should anyone else (unfortunately this still seems to be a common approach which can cause many problems). Our goal is to provide the best services with the best security ratings.
SECURITY SPECIFICS
All communication between remote Econode units and the SolarNet server services use HTTPS, with the minimum supported encryption version being TLS1.0, we no longer support the old and now insecure SSL v1, v2 and v3 protocols. Posting data to the SolarNet server requires a SolarNet-issued X.509 client certificate for authentication (this ensures non repudiation of the source of the data collected).All actionable services performed by a Econode requires a specifically allocated token with a paired secret key. This prevents unathorized agents from accessing the actionable services.If your company's security policy requires solutions to be deployed and accessed over a VPN, or behind a HTTPS proxy server or similar, the SolarNetwork solutions can also be deployed with these additional measures in place.
