Security and Privacy

Data Encryption

Your connection between Astradot agent and Astradot data collection servers is fully encrypted. Data is sent using industry standard HTTPS protocol.

Data Verification

You can see what data is being sent to us, using either:

Audit Mode

All our agents have an auditMode setting. Enabling it in the config file of the agent will cause the agent to output all data sent and received from our servers to a log file.

Proxy

All agents have the ability to specify a proxy on your end. When enabled, this sends all data through your proxy to our servers. Thus you can examine and verify the exact tcp packets being sent to us.

Agent Binary Verification

All our agents give you a license to dissassemble them. All agents are also compiled with debug symbols included. This allows you to perform a full security audit of the binary to ensure it is not doing anything malicious.

No PII data collection

Our agents don't collect any PII data. We are only concerned with showing you performance metrics of your infrastructure.

SQL, CQL, Database Query Obfuscation

Any database query samples collected are fully obfuscated to remove any values or Personally Identifiable Information (PII) before being sent to our servers.

Eg, a SQL Statement like this:

INSERT INTO users VALUES('user1', 'password2');

looks like this when sent to our servers:

INSERT INTO users VALUES (?, ?);