Discussing Typesense Cloud Security and SOC Certifications.
TLDR Pradyuman questioned the security practices of Typesense. Kishore Nallan explained their practices but noted the lack of external auditing. Pradyuman recommended auditing tools and Jason agreed to consider them and to discuss their system's security over a call.
1
Nov 27, 2021 (26 months ago)
Pradyuman
05:21 AMWe'd like to use a hosted version of Typesense if possible, but we'll be indexing PII and need to have confidence that there isn't significant risk of a data breach on your end.
Kishore Nallan
05:28 AMKishore Nallan
05:31 AMa) Every Typesense cluster runs on isolated infrastructure so every customer's data is isolated
b) Data is encrypted at rest on disk
c) Machines have SSH disabled
d) SSO based login (Github auth)
Kishore Nallan
05:33 AMPradyuman
07:03 AMFor us, it's more just generally being comfortable with your security practices so we can feel confident there's not a risk of a data breach. So any documentation on that front would be super great (alongside any information regarding pen test cadence / bug bounty program). I'm happy to chat through this briefly on call too if you don't have official documentation yet. As long we're comfortable with the current state of the system and you have a path towards a more comprehensive and well documented program, that will probably be sufficient for us at the moment.
Pradyuman
07:06 AMSecureframe: https://secureframe.com/
Vanta: https://www.vanta.com/
We've used both and have gotten completed audits within 4 weeks (happy to make referrals to auditors if this is something you're interested in).
1
Jason
07:26 AMFor now, we don’t have this documented anywhere but happy to talk you through our practices over a quick call. Will email you with my availability.
Typesense
Indexed 3011 threads (79% resolved)
Similar Threads
Inquiry and Troubleshooting of Typesense Cloud
Alex is addressing memory usage, import, and bandwidth issues with Typesense Cloud. Jason helped determine the issues and offered solutions, including in-place upgrades and potential use of Cloudflare for security.
Discussing Typesense Cloud's SSDs, NVMe, and Resources Needed
A asked about Typesense's storage type and configuration possibilities. Jason shared that they use SSDs and suggested NVMe SSDs for high-availability instances. They discussed server resources needed for specific user cases and briefly touched on DDoS protection via Cloudflare.
Trouble Running Typesense Docker Image on AMD Phenom II X4 955 Processor
Ian struggles to run Typesense on an AMD Phenom II X4 955 Processor, experiencing the docker image to shut down immediately upon startup. Jason and Kishore Nallan suggest multiple troubleshooting steps, identifying the potential issue as the processor's lack of support for MSSE4 flags.