Intel Granulate is built with security in mind and undergoes ongoing rigorous security testing
Intel Granulate offers best-in-class data protection and settings that protect your infrastructure data
Intel Granulate’s policies and products are compliant with GDPR privacy regulations
Intel Granulate adheres to carefully controlled workflows that ensure that all business is executed based on established security guidelines. These workflows include carefully structured reporting lines, data access controls, segregation of duties, security monitoring, and internal audits.
Intel Granulate security policies are designed to adhere to the strict guidelines set by Intel Corporation and internationally recognized security standards- SOC 2 Type II, ISO 27001 and HIPAA
Intel Granulate architecture is designed around the goals of redundancy, security, and “always on” availability.
Our security design relies on industry best practices such as encrypted transmissions, cross-site scripting prevention, firewalls, regular security updates and security assessments to ensure the security of your data. Auditing, access restrictions and secure decommissioning of data storage complement the design.
All performance data that are collected on the customer side are securely transmitted to our servers in the cloud and processed behind firewalls. Intel Granulate runs on the Amazon Web Services (AWS) cloud-computing service and benefits from Amazon’s secure, world-class data centers, which are certified for ISO 27001, PCI-DSS Level 1, and SOC 1 / SSAE-16.
Intel Granulate runs in the Amazon cloud (AWS) cloud infrastructure. AWS security measures provide a high degree of data protection. AWS guarantees physical access controls, hypervisor protection, and secure decommissioning of instance data.
We continuously monitor the security of our hosting environment. In case of security incidents, we thoroughly evaluate detected problems and the underlying root causes as described in our Incident Response Policy.
Direct access to AWS services by our employees is carefully regulated based on multi-factor authentication. Permissions are granted on a “need based access” policy following a thorough approval process.
All systems we run are subject to permanent health and security monitoring.
All Intel Granulate employees undergo annual security-awareness training.
For high availability purposes we leverage AWS standards, best practices and failover solutions.
The attack surfaces of our services are minimized based on automated vulnerability scans, regularly conducted internal security assessments.
All data exchanged between Intel Granulate sAgent and Intel Granulate Cluster is encrypted in transit.
Data is sent using proprietary encrypted binary protocol.
Intel Granulate SaaS uses TLS 1.3 (SSL Labs Grade A+).
Intel Granulate SaaS uses AWS storage with AES 256 encryption.
Encryption keys are managed by Intel Granulate using AWS Key Management Service (KMS).
Managed customers must configure their own hard disk encryption and manage encryption keys on their own.
The Intel Granulate sAgent communicates with the gCenter
All communication between the sAgent and gCenter encrypted
Intel Granulate isn’t able to initiate a connection to the customer’s cluster
Installation – Account Name, License Name, Installation Flags
Agent Registration – License Key, Service ID
Intel Granulate License – License Status, Service ID, License Key, License Details, License Model
Health Check – Service ID, Time Zone, Traffic Size, Update Window, Performance Data
Metrics – Service ID, Monitoring Timeframes, Success & Failure Alerts, Performance Data
Heartbeat – Service ID, Node ID, Source Information
Updates – Service Updates, Version, Description, Download URL
Intel Granulate services and data is hosted in Amazon Web Services (AWS) facilities.
The services and facilities of AWS are certified against international standards:
Intel Granulate services are designed to adhere to internationally recognized security standards – SOC 2 Type II, and HIPAA.
Intel Granulate is GDPR compliant.
Intel Granulate sAgent is designed to ensure 99.99999% availability SLA of the customer’s infrastructure.
Intel Granulate leverages AWS fail-over mechanisms to ensure high availability of all services.
Intel Granulate optimization agents are completely autonomous and will continue to work properly even without network connection to the server.
Intel Granulate’s sAgent is built with internal high performance gain failsafe mechanisms to prevent performance degradation.
The sAgent holds a performance gain threshold of 65% improvement, below this threshold the agent starts to automatically relearn for a 20 second timeframe to rise above the gain threshold.
Following 3 consecutive failures to return to the 65% threshold, an alert is raised and the agents can be configured to deactivate automatically.
Intel Granulate constantly monitors the availability, performance, and security of all SaaS clusters.
If a problem is detected, the Intel Granulate support team is notified immediately.
On-Prems deployment customers can also choose to monitor by sending regular health checks to Intel Granulate gCenter
Using a fully automated CI/CD pipeline, Intel Granulate is able to roll out updates and hot fixes within a few minutes.
The Intel Granulate architecture allows for zero-downtime upgrades of clusters and agents.
Updates of Intel Granulate’s sAgent and gCenter can be done both manually and automatically.
