How secure are apps built with Crowdbotics?

Applications built on Crowdbotics move millions of dollars in funds, deliver confidential personal health information in hospitals, and serve in a variety of high-security, mission critical contexts. 

This article will help you understand how Crowdbotics handles security, and ways that you can ensure that your apps are secure.

 

Crowdbotics offers bank-grade encryption for data on all paid plans. In particular, data is secured in transit using 256-bit AES encryption and SSL technology, which is the same level of encryption used by financial institutions when transmitting secure information, and the US government when transmitting secret information.  

Secure HTTPS endpoints are used whenever transmitting information. Additionally, Advanced Plan (and above) users have access to encrypted databases, which provide encryption of all data at rest.

 

Each app on the Crowdbotics platform runs within its own standalone isolated container and environment.  In addition to being scalable, this means your app is separated from other applications and doesn’t share a backend, database, or runtime with other apps. Each application environment operates with its own isolated processes, memory, and file system.

 

Crowdbotics apps on the Pro Plan and above receive ongoing security and vulnerability updates on all dependencies using Dependabot.

 

Crowdbotics apps are built using the RADStack: React, React Native, and Django. Django has strong default protections against a variety of standard attack vectors, including CSRF, SQL injection, and more.