- Introduction to WorkXpress
- Building Your Application
- Examples and Best Practices
- Technical Manual
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
start:faqs [2012/09/11 19:44] treff [Isn't cloud computing IaaS?] |
— (current) | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== FAQs ====== | ||
- | ===== General Knowledge ====== | ||
- | ==== What is Cloud Computing? ==== | ||
- | For the full description of cloud computing, see the WorkXpress article here; [[http://www.workxpress.com/what-is-cloud-computing]] | ||
- | ==== Isn't cloud computing just infrastructure? ==== | ||
- | Cloud computing has three components, Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS). Servers and infrastructure are a very small part of the real value proposition of cloud computing. See the WorkXpress website article for a full description of cloud computing [[http://www.workxpress.com/what-is-cloud-computing]] | ||
- | ==== 5GL - I've been hearing about that sort of thing for years, its never worked ==== | ||
- | |||
- | ===== Technical ===== | ||
- | ==== Is it Secure? ==== | ||
- | |||
- | The problem with security is that every new application; …is built by a new team, …using different tools and methods, …to build different code, …that includes different security vulnerabilities, …and therefore needs its own security testing, …and ultimately needs its own remediation. | ||
- | |||
- | A Digital Assessment Survey showed on average; ...1 vulnerability for every 8 lines of code, and 1 CRITICAL vulnerability for every 69 lines of code | ||
- | |||
- | Solution: Eliminate application security concerns at the platform level | ||
- | The WorkXpress architecture allows developers to build applications that pass application-level security tests...AUTOMATICALLY. | ||
- | |||
- | How? WorkXpress is a secure platform with a unique, proprietary architecture. Because of this, the applications built on top of WorkXpress do not need to be independently penetration tested - they are automatically secured according to level of security applied to the platform itself. | ||
- | |||
- | In other words, one secure platform saves thousands of applications from having to be tested and secured individually, avoiding enormous expense of time, cost, training and remediation. Security features include; | ||
- | |||
- | * Encrypted URLs | ||
- | * Hardened against XSS scripting | ||
- | * No JS allowed | ||
- | * Hardened against SQL injection | ||
- | * Penetration tested | ||
- | * Unified up‐to‐date package set | ||
- | * Physical and network security are controllable | ||
- | * No anonymous API or user access | ||
- | |||
- | Additionally, the WorkXpress platform provides critical Data-security tools | ||
- | * Data encryption in transit | ||
- | * Data encryption at rest as needed | ||
- | * Data redaction of critical privacy information | ||
- | * Supported infrastructure offers compliance including SAAS70, Federal, HIPAA, HITECH, PCI and more. | ||
- | |||
- | For one example of how a specific public cloud provider, Amazon Web Services, supports a range of compliances please see [[http://aws.amazon.com/security/]] | ||
- | |||
- | ==== Do I have to use your servers? ==== | ||
- | ==== What is the underlying technology stack? ==== | ||
- | ==== Can we use our existing service providers / internal IT teams? ==== | ||
- | ==== Are we "locked in"? ==== | ||
- | |||
- | ===== Other ===== | ||
- | ==== What if my team is too busy to take on a new technology right now? ==== | ||
- | ==== What if we don't have a history of doing custom development? ==== | ||
- | |||
- | ===== Corporate and Legal ====== | ||
- | ==== How big is your company ==== | ||
- | ==== What if WorkXpress gets bought out / goes out of business / something goes wrong? ==== | ||
- | ==== What Contracts will we need? ==== | ||
- | |||
- | ===== Evaluation/Competitive ===== | ||
- | ==== Do you work in my Industry / Geography / etc.? ==== | ||
- | ==== Why have I not heard of you before? ==== | ||
- | ==== Probably a bigger player has something like this in the makings? ==== | ||
- | ==== How do you stack up against other PaaS providers? ==== | ||
- | |||
- | ===== Partnership ===== | ||
- | ==== What if we are a committed Microsoft/etc. Partner? ===== | ||
- | |||