Dinamica Generale Cloud Systems: Security and Data Protection.

Dinamica Generale’ cloud systems are protected by amulti-layered security architecture designed to ensure maximum data protection, service reliability and high access performance.

The infrastructure is based on six integrated security layers designed to ensure business continuity and advanced defense against cyber threats.

Six levels of cloud security

• Server redundancy and fault tolerance
  Ensures continuous operation even in the event of hardware or system failure.
• Hardware Perimeter Security (Firewall)
  Dedicated firewall clusters protect the infrastructure from unauthorized access and malicious traffic.
• Software perimeter security (Application Inspection)
  All communications between client and server are constantly analyzed for anomalies.
• Native application security
  Protection mechanisms are built directly into the software architecture.
• Isolation of administrative sessions
  Administrative accesses are completely separated from user activities.
• Multimodal and geographically distributed backup
  Data are replicated across multiple international locations for maximum resilience.

Advanced protection against DoS and DDoS attacks

The application inspection system analyzes each communication flow between server and client, distinguishing legitimate traffic from suspicious traffic through recognized patterns.

The firewall constantly monitors:

• The number of connections per second per individual IP address
• the total volume of connections over time

When the parameters exceed security thresholds, calculated by adaptive algorithms, mitigation procedures are automatically triggered that reduce or block malicious traffic, preventing DoS and DDoS attacks.

The firewall infrastructure consists of a scalable cluster that can balance the load and maintain high performance even at peak times.

Secure backup and disaster recovery

To ensure data persistence and integrity, and to prevent risks related to human error or system crashes, General Dynamics regularly performs two types of remote backups:

• Full server backup, replicating the entire state of the system
• Backup of client data, dedicated to the preservation of databases and individual information

All backups are:

• historicized and versioned
• rescued in remote international locations
• Protected even in the event of natural disasters or data center unavailability

Data are transferred and stored using 256-bit AES encryption, with encryption keys known only to corporate management.

Certified security audits and penetration tests

To maintain the highest security standards, Dinamica Generale uses certified outside companies that periodically conduct penetration tests on the cloud infrastructure.

These activities make it possible to detect vulnerabilities in advance and keep the system constantly updated and secure.