Mobile menu
GovCloud
Resources GovCloud How Is Your Design Data Protected in Altium 365 GovCloud?

How Is Your Design Data Protected in Altium 365 GovCloud?

Lena Weglarz
|  Created: April 3, 2024
Altium 365 GovCloud
How Is Your Design Data Protected Cover

Altium 365 GovCloud is a dedicated region of the Altium 365 cloud platform, situated within the US and operated exclusively by US Persons in the AWS GovCloud region. This specialized environment is designed to help you meet the confines of US government regulations, providing a secure workspace for your team’s electronics designs. Read on for a deeper insight into how Altium 365 GovCloud protects your sensitive information to remain safe and accessible only to those who need it.

Encryption

Altium 365 utilizes the latest encryption technologies to ensure your design data remains secure, whether at rest or in transit. 

For data at rest, once it’s hosted on the Altium 365 environment, it's processed through AWS. We employ AWS-provided key management and encryption modules meeting FIPS 140-2 requirements.

For data in transit, moving between customer environments and Altium 365, we rely on Transport Layer Security (TLS 1.2 or higher), the most widely accepted security protocol. 

All connections within AWS use secure channels, enhancing the overall security of Altium 365. By actively phasing out outdated or vulnerable systems, we align with the standards recommended within the industry. Our encryption practices meet the rigorous requirements of FIPS for data at rest and NIST for data in transit.

Access Restrictions

The focus on security in Altium 365 GovCloud encompasses the entire platform, from the Web Application Firewall (WAF), allowing access only from US-based IP addresses, to the strict controls our DevOps team enforces. 

The DevOps team is the only group granted access to the infrastructure and adheres to stringent access protocols to protect every node and piece of data. Their access is tightly controlled and subject to a thorough two-person approval process, which requires consent from both the team requesting access and our security team to ensure authorization is properly vetted and granted. We verify that every employee working within the Altium 365 GovCloud environment is a US person, as defined by federal regulations—this includes US citizens and green card holders. Every access request is backed by a thorough background check, a fundamental part of our hiring process.

When it comes to workspace access, Altium sets the initial controls, but then it's up to the workspace administrators to decide who gets in. Altium 365 GovCloud strictly blocks any IP addresses that are not US-registered or do not originate from a US location. However, your data's privacy and regulation are your responsibility in the sense of a shared responsibility model. Altium focuses on managing and protecting the infrastructure so that you don’t have to worry about technical issues such as updates to machines or databases.

Altium 365 GovCloud Status Page

Altium 365 GovCloud features a publicly accessible service status page, which relates to the availability of the platform. The page offers real-time updates, service statuses, incident disclosures, and more, ensuring that US customers have a reliable source of information to refer to at all times. 

Altium 365 GovCloud Status Page
Subscribe to updates whenever Altium 365 GovCloud creates, updates, or resolves an incident

Incident Management

Altium boasts a comprehensive incident management program that thoroughly investigates incidents from multiple sources. Critical and high-severity incidents immediately activate the program, triggering a swift response covering everything from investigation to remediation.

Should these incidents affect our capacity to deliver services, we immediately report them on the Altium 365 GovCloud Status Page.

Vulnerability and Threat Management (VTM)

To minimize the probability of incidents, Altium has implemented a vulnerability and threat management program. This program is designed to identify vulnerabilities early in the code development phase, even before it’s deployed in production, as part of our secure software development lifecycle. We utilize advanced protections like Software Composition Analysis (SCA) to identify vulnerabilities not only in our existing code but also in any third-party libraries that are being integrated. 

Additionally, the code is being monitored continuously. In the live environment, our threat detection tools are always active, collecting threat intelligence from various data sources. We constantly monitor the environment for any emerging threats and respond accordingly.

This meticulous approach is consistent across both Altium 365 GovCloud and our commercial offerings, though, with GovCloud, we adopt additional efforts to ensure compliance with regulatory requirements.

Network Security

Now, let’s look at Altium 365 GovCloud controls that help manage both unauthorized inbound and outbound traffic.

As mentioned, Altium 365 GovCloud implements firewall restrictions to block IP addresses from outside the US. This includes the use of a Web Application Firewall (WAF) that restricts inbound access. 

For outbound access, Altium 365 GovCloud employs controls that allow you, the customer, to set your own restrictions on IP addresses as well. We don’t monitor whom you grant access to. It is the responsibility of the customer to determine who has access, the level of access granted, and whether they have the capability to download and export data. 

Only the admin has the authority to add or remove users from the workspace. The admin is designated as either the owner of the workspace or an appointed administrator. The owner of the workspace is automatically an admin, and other users can be granted admin status as well.

As an admin, you can see who has access, and you have the authority to revoke access as needed. Only admins can perform critical workspace operations, ensuring that sensitive actions are tightly controlled and managed.

Since admins have the ability to add an email address for anyone they wish to grant access to the environment, it's crucial to carefully control who is given this power. 

In an Advanced Security Package, we also include IP Whitelisting, which is an exclusive privilege of the admin. It's not possible for just anyone to add themselves or their IP addresses to the whitelist.

Get Your Copy of the Security Whitepaper

Through meticulous encryption, stringent access restrictions, and strong network security, we ensure that your electronics design data is not only secure in Altium 365 GovCloud but also managed within a framework that respects and upholds the highest standards of data protection. Our commitment to safeguarding your projects extends from the ground up, incorporating a comprehensive security strategy that covers every aspect of our platform's operation. 

Discover more about the security approach, measures, and practices of Altium 365. Get your copy of the security whitepaper to gain the insights you need, or visit our Trust Center.
 

About Author

About Author

Lena Węglarz is a dynamic and engaging content creator and storyteller, known for her  commitment to clarity and the 'write-like-you-talk' rule. She joined Altium in 2023, and since then she’s been the driving force behind Altium 365 content, letting the community know where the  world designs electronics. Her work stands out for its ability to make complex technical concepts accessible and relatable. Collaborating closely with engineers, Lena integrates their insights and perspectives into the narratives, bridging the gap between engineers' technical expertise and  the broader community. She fosters a deeper understanding and appreciation of the intricacies  of electronic design.

More content by Lena Weglarz

Related Resources

Altium 365 GovCloud
Why We Chose
AWS GovCloud (US) Cover Photo 4 Reasons Why We Chose AWS GovCloud (US) for Altium 365 GovCloud In this blog, we explain the reasons behind our decision to operate Altium 365 GovCloud within AWS GovCloud (US). This partnership is guided by a clear vision: to provide our users with a secure, compliant, and reliable platform for sensitive electronics design data. Read Article
GovCloud 101 Cover Photo Altium 365 GovCloud 101: Everything You Need to Know Would you like to improve the protection of your data? Altium 365 GovCloud can help you achieve these goals. It’s a version of Altium 365, engineered to meet the stringent demands of US government regulations. Read Article
A digital representation of a cloud with a secure padlock icon, illuminated against a dark background A Guide to Cloud Security Assessment and Altium 365 Certifications The cloud has become an integral part of businesses, offering scalability, flexibility, and cost-efficiency. However, as organizations increasingly migrate their data and business operations there, addressing potential security risks is top of mind. Cloud security assessment is necessary to ensure the effectiveness of safeguarding controls of your organization's data, reputation, and future. In this article, we look at the importance of cloud Read Article
Altium 365 Security Approach and Practices Cover Altium 365 Security Approach and Practices The following whitepaper will help you understand the extensive security measures that underpin Altium 365 . We’re committed to keeping your data safe, and we want to show you exactly how we do it. Read the whitepaper to understand better: The comprehensive security measures in Altium 365 implemented to protect your data Altium 365 GovCloud and how it can help you design PCBs and meet US government regulations Compliance certifications Read Article
Compare Commercial Altium 365 vs Altium 365 GovCloud Cover Photo Compare Commercial Altium 365 vs Altium 365 GovCloud If you're trying to understand how commercial Altium 365 differs from Altium 365 GovCloud, you're in the right place. This article breaks down the specifics, helping you grasp the unique features of each. Read Article
30:47 Meet US Government Security Standards in PCB Design: Commercial Altium 365 vs Altium 365 GovCloud Watch our webinar and learn how to design PCBs while staying compliant with US government security regulations. Understand the differences Watch Video
Cloud Data Security Cover Photo Why You Should Prioritize Cloud Data Security The threat of cyberattacks looms larger than ever. Learn why cloud data security offers advanced protection that often surpasses traditional on-premise defenses. Read Article

Related Technical Documentation

Working with Tasks in an Altium 365 Workspace Working with Tasks in an Altium 365 Workspace

This page looks at the Altium 365 Workspace's support for Tasks, used to interact with a process, or rather its defined workflow. A task relates to a user task within the workflow - a point at which user action is required for the workflow to progress

 Read Documentation
Standalone Altium 365 Gerber Compare Standalone Altium 365 Gerber Compare Read Documentation
PLM Integration with an Altium 365 Workspace PLM Integration with an Altium 365 Workspace

This page looks at direct support for connecting an Altium 365 Workspace to a PLM instance (Arena/Windchill). Covers component synchronization and PLM-related processes and workflows

 Read Documentation
Managing Environment Configurations in an Altium 365 Workspace Managing Environment Configurations in an Altium 365 Workspace

This page looks at working with the Altium 365 Workspace's Team Configuration Center to create and manage environment configurations, used to constrain each designer's working environment to only use company-ratified design elements

 Read Documentation
Environment Configuration Management in an Altium 365 Workpace Environment Configuration Management in an Altium 365 Workpace

This page looks at the Altium 365 Workspace's support for Environment Configuration Management, to give your organization centralized control over the environment your designers operate in. Covers configurations, data items, application and compliance

 Read Documentation
Design Data Comparisons in an Altium 365 Workspace Design Data Comparisons in an Altium 365 Workspace

This page looks at the design data comparison features supported by an Altium 365 Workspace. Covers Gerber Comparison, Schematic Comparison and BOM Comparison

 Read Documentation
Defining a Process Workflow in an Altium 365 Workspace Defining a Process Workflow in an Altium 365 Workspace

This document looks at the Altium 365 Workspace's Process Workflow Editor, working with it to craft the process workflow required. Covers building a workflow diagram, creating a user form, then saving and deploying as a usable process definition

 Read Documentation
Creating & Managing Processes in an Altium 365 Workspace Creating & Managing Processes in an Altium 365 Workspace

This page looks at the Altium 365 Workspace's support for Workflows, used to implement design processes. Covers access, creation, editing and import/export, along with predefined processes available, and how a designer can access enabled process workflows

 Read Documentation
Assembly App in an Altium 365 Workspace Assembly App in an Altium 365 Workspace Read Documentation
Altimade Order Management in an Altium 365 Workspace Altimade Order Management in an Altium 365 Workspace

This page looks at Altium 365's role in the Altimade ordering and delivery system which, in conjunction with a partnered manufacturing platform, provides a 'single click' hardware production system

 Read Documentation
Back to Home

Table of Contents

Altium 365

Sensitive design data? Get access to Altium 365 GovCloud!

Protect your data

Prevent unauthorized outbound traffic

Control the access

Help your organization meet US government requirements

Get Access

Altium 365 GovCloud

Altium 365 GovCloud

Request Access to Altium 365 GovCloud

Altium 365 GovCloud

Request Access to Altium 365 GovCloud

Thank you, you are now subscribed to updates.