Skip to main content

Encryption

AVH has secure communication interfaces for remote access and management, such as HTTPS and SSH, and is designed to be secure by default. All data is encrypted in transit and at rest.

Our system as a whole is designed to run on minimum of TLS version 1.2 with AES-256 encryption. All virtual device data is encrypted at rest using AES-256-CBC, with the keys known only to the main database and temporarily to the particular compute node responsible for running the virtual device.

Onsite Deployments

The IPSW service specifically does not use TLS encryption because it normally hosts publicly-available IPSWs, however this is an internal service.