Security Best Practice

Implement IP restrictions in Breato

A great way of protecting your applications is restricting login to those IP addresses that you specifically approve.

To restrict IP addresses, click: Setup>Manage Users>Profiles If you are using Personal Edition or Group Edition, click: Setup>Security Controls>Session Settings

Consider two-factor authentication

User names and passwords are the most commonly used forms of authentication. Several technologies are available for second-level authorization, including requiring secure IT tokens. Note that this technology does not protect against 'man-in-the-middle' attacks, where messages are intercepted. Also, applications that may be integrated with Breato are not protected by two-factor authentication.

Please contact your account team for more information. WHAT IS THIS?

Secure employee systems

One of your goals is to keep email fraud from reaching your users in the first place. To help do that, secure all computers used by your employees.

• Update all users to the latest browser version.
• Deploy email filtering technology. Make sure you whitelist the Breato IP address.
• Install and maintain desktop protection software on all user machines and keep all applications and definitions up to date.

Strengthen password policies

You can make passwords more secure and harder to break by requiring users to define complex passwords, setting up password expirations, and implementing lockouts.

To set password policies, click: Setup>Security Controls>Password Policies

To force users to reset their passwords, click: Setup>Security Controls>Expire All Passwords

Require secure sessions

By mandating that all sessions are encrypted and secure, you protect messages in transit. To require secure connections in Breato, click: Setup>Manage Users>Profiles

Decrease session timeout thresholds

Users sometimes leave their computers unattended or they don't log off. You can protect your applications against unauthorized access by automatically closing sessions when there is no session activity for a period of time. The default timeout is one hour; you can set this value from between 30 minutes and eight hours.

To change the session timeout, click: Setup>Security Controls>Session Settings

Identify a primary security contact

Please identify a person in your company who is responsible for application security. He or she should have a thorough understanding of your security policies. Make this person your single point of contact for Breato.

To notify Breato about your security contact, click: Setup>Security Contact

Home...