Security Features

We provide following security features

1. SSL (Secured Sockets Layer)

zefed is certified with SSL certificate which means it is highly secured with SSL protocol security. It ensures that all the data passed between the web server and the browser remains private and integral. Normally, data sent between the browsers and webservers is sent in plain text so attackers are able to intercept all data and can see and use that information but using the SSL security the data sent or received in encrypted form, which is inaccessible to others because they can’t understand the encrypted form of information. SSL secures millions of people's' data on the internet every day, especially during online transactions or when transmitting confidential information.

2. SQL Injection Protection

SQL injection is a code injection technique that might destroy the database of the system. It is one of the most common web hacking techniques. It is the placement of malicious code in SQL statements, via web page input. If properly executed, the attacker has full access to the backend database. This could include information such as emails, usernames, and bank accounts. zefed uses many techniques to protect the system from this type of SQL injection which makes our system more dependable and committed.

3. Backups

Backup is the process of copying or archiving of computer data so it may be used to restore the original after a data loss event. zefed system backups all the files and database of the software in multiple offsite location, so even if one server’s database or files is damaged or deleted we can easily restore from another backup server which makes our software secure and reliable.

4. Security Audits

zefed schedules the security audits to ensure the premium protection of the software. To adequately determine whether or not the client’s goal is being achieved the security audits are done

5. Cross Site Scripting (XSS) protection

Cross-site Scripting refers to client side code injection attack where in an attacker can execute malicious scripts into legitimate website or web application. This is usually achieved by storing the malicious scripts in the database where it will be retrieved and displayed to other users, or by getting users to click a link which will cause the attacker’s JavaScript to be executed by the user’s browser. zefed also protects you against the majority of XSS attacks.

6. Cross Site Request Forgery (CSRF) Protection

It is a type of attack that occurs when a malicious website, email, blog, instant message, or program causes a user’s web browser to perform an unwanted action on a trusted site for which the user is currently authenticated. It allows a malicious user to execute actions using the credentials of another user without that user’s knowledge or consent. Moreover, zefed protect against most types of CSRF attacks.

7. Clickjacking Protection

Clickjacking is a malicious technique of tricking a web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly offensive web pages. zefed provides the protection against clickjacking using various prevention technique.

8. DDoS Mitigation

DDoS is a type of DoS attack where multiple compromised systems, which often infected with a Trojan, are used to target a single system causing Denial of Service (DoS) attack. DDoS Mitigation is a set of techniques or tools for resisting or mitigating the impact of distributed denial-of-service (DDoS) attacks. So, zefed uses the DDoS mitigation technique to minimize the DDoS attack on the hosted site.