Full application protection at the Edge
The built-in security features you need with flexibility to adapt to your application requirements.
Composable Edge Cloud Protection
Always-On DDoS ProtectionNetwork-layer DDoS protection is included by default across the entire Section network to protect against all Layer 3/4 attacks. Section’s DDoS protection includes dually redundant DDoS protection including two the world’s largest DDoS networks.
Composable Edge Cloud
Compute Framework Security
Applications cannot view or access processes outside of their isolated environment.
Namespace NetworkPolicy Control
Kubernetes NetworkPolicies restrict communications across namespaces.
Private Repositories & Registries
Maintain your application code, configuration and deployment manifests in your own code management systems and image registries.
Security Platform Extensions
Additional security solutions are available through platform extensions and recommended partners.
HTTP ExtensionsSection supports several containerized solutions that are available for general use by Section customers. Security-focused features available include:
- Activate IP blocking (via Section HTTP Ingress)
- Geo IP range blocking, and User Agent detection and blocking (via Varnish Cache)
- TLS Certificate Management (via Section HTTP Ingress)
Recommended PartnersWith Section, you have flexibility to choose add-on (Layer 7) security solutions to deploy alongside your applications, including best-in-class WAF and bot management solutions.
Additional Security Features
ComplianceGeographic Delivery Control
Control delivery to locations consistent with your GDPR or other compliance requirements.
Vendor Delivery Control
Restrict delivery nodes to a specific provider consistent with your compliance and security requirements.
Section offers PCI DSS 3.2.1 Level 1 Compliant Service as a premium service, enabling customers to build PCI-compliant systems that consume Section.
Section’s privacy practices align to compliance with GDPR.
- API tokens
Section Security PracticeSection’s security practice is led by our CISSP-qualified VP of Security. Standard security processes include:
- Independent Security PCI DSS Audit (conducted annually)
- Independent system penetration testing (conducted semi-annually)
Ready to jump in?
Get started with Section to experience all the benefits at the Edge.