Secure virtual hosting
ATTENTION!
Applications for the provision of services are accepted ONLY through a personal account *
* Register in your personal account or log in, select the service you are interested in and fill in the required fields
The «Secure Virtual Hosting» service is provided to state bodies and organizations that use in their activities information constituting state secrets, as well as to commercial organizations that have increased security requirements.
Secure Virtual Hosting is effective in managing and securing Internet sites – from corporate pages to multi-level multi-user portals. The service does not require large financial investments and is optimal for most popular CMS.
As part of the service, beCloud provides the user with virtual resources (data storage media - vHDD), the ability to manage databases, perform daily backups of website information, and ensure the protection of the hosted resource in accordance with the requirements for authorized Internet service providers.
The Client manages the website using the ISPManager user panel provided as part of the service.
Tariffication is carried out on the basis of consumed resources - allocated disk space and the number of databases.
(!) In cases where the client's website provides processing of a significant number of requests (the average daily value is more than 1000), provides for authorization of users to perform financial and legally significant actions, the processing of personal data, is a media or other information resource intended for a wide range of consumers of the information provided by the Internet site, the Operator recommends considering the possibility of ordering the «Secure hosting on a virtual server» service.
The operator guarantees monthly service availability at the level of 99.5% and the quality of the service provided by meeting the agreed SLA indicators.
As part of the service beCloud provides:
- functioning of the audit system and logging of security events of the Internet site;
- daily backup of information on the Internet sites, including full backup at least once a week;
- provision of access to the administrative part of the Internet sites only through the ports of the transport layer protocols from a certain list of network addresses specified in the service agreement;
- restriction of access to the CMS of the Internet site (at the request of the Client);
- traffic protection and malware filtering;
- timely updating of information security software used to provide the service;
- protection against distributed attacks aimed at disrupting the availability of Internet sites;
- interaction with the client to detect vulnerabilities in the protection system of the client's website;
- elimination together with the client of the revealed safety violations;
- the ability to issue and install SSL certificates.
The service of the Republican platform is provided on the basis of the Republican data centre which ensures compliance with the requirements for power supply, climatic conditions, physical protection of equipment and continuous operation in accordance with the Uptime Institute TIER III Tier Certification of Design Documents and TIER III Tier Certification of Constructed Facility, technical 24x7 support and guaranteed levels of service availability.
IMPORTANT
- BeСloud company (Limited Liability Company «Belarusian Cloud Technologies») is included in the list of the Internet service providers authorized to provide hosting services to state bodies and organizations https://oac.gov.by/secure-internet/Internet-service-providers.
- When providing the service, beCloud ensures full compliance with security requirements in accordance with the Order of the Operative Analytical Centre under the aegis of the President of the Republic of Belarus on August 2, 2010 №. 60 «On approval of the Regulation on the procedure for determining the Internet service providers authorized to provide the Internet services to state bodies and organizations, using in their activities information constituting state secrets».
- In order to minimize external impacts on the Client's Internet site by exploiting vulnerabilities of the CMS used by the Client, the Operator recommends that Clients:
- update the CMS on a regular basis as new versions are released;
- restrict access from certain IP addresses to the URLs of the administrative part of the Client's resources (CMS);
- transmit on a regular basis the SSL chain of certificates used by the Client's Internet site (root and subordinate certification authorities), as well as the Internet site certificate (public and private part of the key) in the form of files in the format: .p7b (pcks#12) or .pem to protect against anomalous activity and attacks on web applications using SSL/TLS connection inspection technology.
- The operator is not responsible for:
- incidents that occurred as a result of changes made by the Client when setting up the Internet site and its information security tools, including those that resulted in unauthorized access to the Internet site and/or its administration tools;
- gaining access by third parties to the Client's Internet site and/or its administration tools due to circumstances for which the Operator is not responsible (non-use of information security tools, use of third-party software and Internet services, transfer of credentials, use of standard account names, " weak" passwords, etc.);
- use by the Client of the Software in violation of the rights of third parties.
Tariffs
Documents
For more information, please contact beCloud sales department:
+375 17 287 11 11;
+375 17 287 11 49;
sales@becloud.by.