Security and compliance are a shared responsibility between Artifakt and you.
Traditional IT vs. Artifakt (Platform as a Service)
Artifakt follows the Platform as a Service (PaaS) model. We provide you with a platform in which you and your developers can deploy, run and manage web applications.
The shared responsibility model is pretty simple. Artifakt is responsible for everything related to the underlying infrastructure (the platform) and you are responsible for the data and the source code of your applications.
Depending on your specific needs, the runtime can become your responsibility.
Artifakt is responsible for managing the platform that will host your web applications.
Artifakt platform relies on cloud providers such as Amazon Web Services. We take care of all the necessary configuration for a stable, secure and efficient platform:
Roles, identities and access management to the cloud accounts
Quotas and limits
Networking – Regions, availability zones, VPCs, Subnets, IP pools
Security – Open ports, inbound / outbound rules, private services, encryption in transit and at rest
For security and liability reasons, we cannot use or integrate an existing cloud account.
Artifakt platform includes volumes to store your data and your code. We are responsible for providing and maintaining these volumes up and running:
Volume availability and performance (IOPS depending of the storage size)
Security – Access management between services and encryption at rest
Data durability and automatic backups
Be careful not to confuse data storage management with data management. For more details, please see the Data Management section below (your responsibility).
Compute (servers, OS and middleware)
Artifakt technology uses compute services to run your web applications. We take care of managing this complexity for you:
Infrastructure – Select the right cloud services and sizing
Lifecycle management – Build, update and destroy all platform services
Security – OS updates, patches and access management between services
Reliability – High availability and scalability
Access management – Store infrastructure credentials, SSH and SFTP access management
Configuration – Apply customer's configuration (such as environment variables).
Runtimes and Services
Artifakt offers default runtimes for popular languages and applications such as Wordpress or Magento. We are responsible for building and maintaining these runtimes and required additional services to run your applications (such as MySQL or Redis):
Install required packages and librairies
Start required additional services and apply right sizing
Configure runtimes and services in accordance with the editors' requirements
Improve runtimes and release new versions (within 6 months after editors' official releases)
Keep runtimes available anytime
These runtimes and services are configured to run standard versions of the language or the application. If your application needs customization, you can override default runtime and services configuration but it will become your responsibility, see Specific Configuration below.
As an Artifakt customer, you are responsible for the application and data you will host on our platform, including the specific configuration.
Application & Source Code
You are responsible for implementing strong security measures in your applications and making sure that your application works perfectly:
Git – Code and sub-module availability, Git configuration and integration
Security – Code quality, security patches and code audits
Errors – Bugs and bad behavior of your application
Speed – Application performance, page loading time, function execution time