Policies
Security Measures
Effective Date:April 24, 2025 Last Updated:April 24, 2025
At Bekind Labs, we are committed to protecting the security, confidentiality, and integrity of your data. We implement a layered security approach that includes both technical and organizational controls. Below are the key security measures in place for Tracker Boot.
1. Web Application Security
Tracker Boot is protected by Amazon Web Application Firewall (WAF) with multiple layers of filtering, including:
- OWASP Top 10 protections (e.g., injection, cross-site scripting, broken authentication)
- Maximum body size limit rule (custom) to prevent oversized payload attacks
- File upload size limit rule (custom) to block abnormally large files
- Rate limiting rule (custom) to mitigate denial-of-service (DoS) and brute-force attacks
- SQL injection protection rule (custom) to detect and block malicious input targeting databases
2. Authentication and Session Management
- Authentication and Session Management
- SSO Login (Google) is enforced to streamline authentication and reduce credential-based attack risks
- Once authenticated, Tracker Boot uses secure session cookies to maintain login status, reducing the need for repeated authentication and minimizing exposure of login credentials
3. Organizational Controls
- Role-based access control (RBAC) within the Tracker Boot environment
- Continuous monitoring for abnormal activity
- Encrypted data in transit (TLS) and at rest
- Regular internal audits and security reviews
4. Third-Party Dependencies
Tracker Boot relies on a number of trusted third-party open-source libraries and services. A complete and up-to-date list of current dependencies is available here.
These measures reflect our commitment to maintaining a secure environment for your product development workflows.