Encrypted communication through Brosix

Brosix is a secure instant messaging tool for enterprise users. By using this product, customers can be sure that their data is protected and never exposed to outside sources.

Brosix customers are located throughout the world. These people use the service for marketing, sales, customer support, training, and much more. Some of our customers are subject to intense regulations, such as HIPAA and SAS-70. By using Brosix, they’re able to meet all regulation requirements.

Since day one, Brosix has ensured that its product meets the most advanced corporate security requirements. Also, Brosix continues to devote a high level of resources to data security in regards to design, deployment, and maintenance.

Brosix was founded on the belief that businesses need a completely secure internal communication environment. This belief has driven Brosix to develop a product with the highest level of data security, allowing its customers to communicate in total security.

At Brosix we maintain a powerful distributed network of IM servers. These high performance servers are located in state of the art facilities that meet the highest security standards.

Note: customer data is never stored on Brosix servers.

Administrators have the option to track user activity. If the Users Activity Log is enabled, the data is then stored on a secure dedicated server. This option is perfect for customers who are required to comply with regulations in regards to storing employee communication.

All of our servers are regularly backed up to ensure that data is never lost. Furthermore, backups are transferred to a minimum of two geo locations via a secured VPN connection. Brosix operates a distributed and redundant system. If for any reason a server fails, the user is redirected to another server as to maintain secure communication.

Brosix has always been dedicated to providing a highly secure IM application that meets all security standards. With this approach, our customers can communicate in real-time with efficiency and peace of mind.

During communication, Brosix implements a variety of tools to prevent data exposure.

• Peer-to-Peer Connections – All communication channels between users are preferably peer-to-peer. If a direct connection is unable to be made, the communication passes through a tunnel server. With this, the sender encrypts the data with the recipient decrypting. Also, it’s important to note that the tunnel server never sees the data, never processes the data, and never stores the data.
• Data Compression and Encryption – All communication channels on Brosix undergo data compression and encryption using the AES 256-bit encryption algorithm. This process guarantees that only an authorized user can interpret data sent on Brosix.
• Website SSL Encryption – Brosix extends its high level of data encryption to its own webpages using the 128-bit Secure Sockets Layer (SSL) technology, an industry standard for protecting the transmission of sensitive data.

Brosix continues to provide a high quality enterprise IM experience, with a primary focus on security. This will remain our top priority in the future, as it gives customers the ability to securely communicate in real time.

Since Brosix does not process financial information, we are not subject to SAS-70.

Also, we do not process health information, so we are not subject to HIPAA.

Brosix provides customers with secure communication channels that allow for the efficient transfer of information. During the transmission, Brosix does not process, change, or manipulate the data in any way.

Any Brosix customer who is subject to HIPAA, HITECH, SAS-70, or SSAE 18 can easily meet these requirements.

Brosix is mindful of the incorporation of all necessary security features and standards in regards to its infrastructure and services. As has always been the case, data security will remain the highest priority at Brosix in the future.

Brosix software communicates with its services using proprietary protocols and data exchange methods. It is not possible to log into a Brosix network without coordination between the software and servers.

All data in a network is transferred using the software, which establishes a connection with a server as a means of authenticating the user.

These security features are consistent throughout every private IM network. Every user is required to authenticate upon log-in. Furthermore, all communication between users and servers is compressed, encoded, and encrypted.

• Application Security – Brosix client applications are signed with a certificate provided by COMODO. This verifies the publisher identity and proves that a third party has not changed the files.
• End User Authenticity – All Brosix users are required to authenticate. The authentication process passes through secure servers to ensure that users are who they say they are. Network administrators have full control from their web control panel, allowing them to: create and delete user accounts, block accounts, block communication between users, and enable/disable features for specific (or all) users.
• Brosix Staff – Any Brosix staff member with access to servers has been trained to understand the finer details of the technology, with an eye toward customer service and security.

Brosix was built on the idea that IM communication should be 100 percent safe and secure. Data security has always been top priority, and this will be the approach we continue to take in the future.