ASUS WebStorage team has been awarded ISO 27001 Information Security Management System Certification in February, 2011 under the strict assessment from BSI (British Standards Institute).
As one of the leading cloud service providers, ASUS WebStorage team constantly fortifies its service security by advanced technologies and management measures. With achieving ISO 27001 certification, it signifies that every ASUS WebStorage users’ data is protected by a security management system that complies with the international standards.
What is ISO 27001?
ISO 27001 formally specifies a management system that is intended to bring information security under explicit management control. Being a formal specification means, it mandates specific requirements for establishing, implementing, reviewing, and improving security controls. Through the independent and accredited audit, it ensures an organization follows systematic procedures to manage the information security of the organization and its customers. ISO 27001 has been widely adopted by many organizations, especially for organizations taking security seriously, like banking, hospitals, and governments.
What ISO 27001 means to ASUS WebStorage
Adopting ISO 27001 standardizes ASUS WebStorage security operations including security policy, organization of security, human resource security, physical and environmental security, communication and operation, network security, access control, incident management, business continuity, and etc. With the solid security system supported by ISO 27001, ASUS WebStorage team is more confident with effectively protecting users’ accounts and data, and ASUS WebStorage team can focus on delivering more features and serving more users.
What ISO 27001 means to the users of ASUS WebStorage
Security has always been a major concern to general public when it comes to cloud services. ASUS WebStorage team demonstrates its persistence in pursuing a more secure cloud services by adopting ISO 27001. Everything about security of ASUS WebStorage, like data centers, equipments, internal process, and even team members will be regularly audited by the external auditing firms. Users can now trust not only the ASUS brand but also ISO27001-the international security standard, and have peace of mind.
ASUS WebStorage One Time Password (OTP) Authentication- Double Protection for Your Online Data
In order to enhance data protection for subscribers, ASUS WebStorage launches ASUS WebStorage One Time Password Authentication (ASUS WebStorage OTP Authentication) to provide users with advanced online security protection. By adding a dynamic security code to the original user password, ASUS WebStorage OTP Authentication provides double protection for all personal data stored in the cloud service. This allows ASUS WebStorage subscribers access to their account anywhere on the go without the risk of exposing their personal data to hackers.
ASUS WebStorage OTP Authentication
ASUS WebStorage OTP Authentication utilizes the latest identification and authentication service by internationally renowned security authentication provider, Symantec. Subscribers can enjoy advanced security protection by simply activating ASUS WebStorage OTP Authentication on their mobile phones. Upon entering the user ID and password, subscribers will be prompted to enter the dynamic security code for an additional authentication process to eliminate the risk of personal data being stolen.
*ASUS WebStorage OTP Authentication is a premium security feature exclusively for paid-membership only.
» Service Feature
Mobile Phone : the information security guard
To access your account with OTP Authentication from your smartphone, simply download and install the "VIP Access" application provided by Symantec. Protect your ASUS WebStorage account with the best cloud security defense available!
Dynamic security code updates dynamically every 30 seconds
ASUS WebStorage OTP Authentication is activated through mobile phone without the need of a computer. A 6-digit dynamic security code is generated every 30 seconds and can only be used once making it impossible for hackers to steal any personal data stored within the cloud service. This allows ASUS WebStorage to provide subscribers the safest cloud service available.
1. Activating ASUS WebStorage OTP Authentication
Depending on the OS of the mobile phone, ASUS WebStorage subscribers can download the VIP Access application provided by Symantec from either the iPhone App Store or the Android Market. The VIP Access application can also be downloaded from Symantec by entering the URL into the default mobile browsers. Upon opening VIP Access, subscribers will receive a "Credential ID".
Maintain Credential ID
After receiving a unique Credential ID, log into ASUS WebStorage Customer Center and click on 「Maintain Credential ID」，to start using ASUS WebStorage OTP Authentication.
2. Change E-mail Account
Maintain OTP E-Mail
To change the e-mail account for ASUS WebStorage OTP Authentication, ASUS WebStorage subscribers can click on「Maintain OTP E-Mail」 and an e-mail will be sent to the new e-mail address on file to confirm the changes. This way, ASUS WebStorage OTP Authentication that was suspended due to e-mail account modification will be re-activated.
3. Forgetting/losing your mobile phones
Set Credential ID OTP
When subscribers forget or lose their mobile phones, they can request a temporary security code valid for 24 hours in order to log on to their ASUS WebStorage account. After clicking 「Set Credential ID OTP」 ， ASUS WebStorage Team will send you a notice to the e-mail account provided by subscribers for verification.
4. ASUS WebStorage account is locked
After incorrectly inputting the dynamic security code 10 times, the corresponding ASUS WebStorage account will be locked for security reasons. In this case, subscribers can click 「Unlock」 ，and ASUS WebStorage Team will send a notice to the e-mail account provided by the subscriber for unlocking the ASUS WebStorage account.
ASUS WebStorage is equipped with the latest information technologies that provide the most reliable cloud environment :
Fully redundant architecture:
ASUS WebStorage is architected with fully-redundant hardware, which includes servers, routers, switches, wiring, storage, and power supplies to ensure no single point of failure.
Double RAID 6 :
Your data is protected by RAID 6 technology such that the data is retained and accessible even when there are two failed drives in a storage system. Moreover, your data is kept simultaneously on two storage systems, so you can access your data when a storage system is down.
World-class data center :
ASUS WebStorage’s servers are located in world-class data centers across the globe. The data centers are certificated by information security management organizations to ensure the safety of users’ data.
AES encryption :
Advanced Encryption Standard (AES) was established by National Institute of Standards and Technology (NIST) and adopted by the U.S. government to protect classified information. ASUS WebStorage uses AES to guarantee users’ data confidentiality.
Network intrusion detection systems :
ASUS WebStorage is equipped with multi-layered intrusion detection systems (IDS), which constantly examine network traffic and system operations to identify suspected patterns and alert the operators to take actions.
Secure Sockets Layer (SSL) is a cryptographic protocol for ensuring security and data integrity during transmission of confidential information, such as account number, password, E-mail, etc. It has been widely adopted by online commerce and IT industries.
Real-time virus scan :
ASUS WebStorage deploys an anti-virus system to real-time scan your files uploaded to Eee Storage. Files infected by virus are labeled, and no downloading or sharing is allowed for these files. Not only your computers but also your friends’ will be free from virus attacks.
Scrambled data allocation:
Because ASUS WebStorage saves your data by scrambled data allocation, viruses cannot recognize the file structures of your data, and thus find no way to infect your files.