Aestiva conducts over-the-web demonstrations daily. Have a question?
(11am to 8pm, EST).
View advanced features provided with all Aestiva products.
- Products can integrate with non-Aestiva products.
- Products include dynamic reporting system.
- Products include executive dashboard module.
- Products are multi-language ready.
- Products include detailed audit trail.
- Products can be extended with special features.
- Products utilize user-friendly paper-like forms.
- Products are affordable.
- Products can be installed on your server.
- Products can also be installed on the cloud.
- Products can be scaled across multiple servers.
- End-user and admin side is 100% browser-based.
- Products are assembled and delivered fast.
- Prices on-line include end-to-end customer support.
- Products require limited or no in-house IT support.
- Products can be combined with other Aestiva products.
All Aestiva products sit on a browser-native engine called Aestiva Array.
Aestiva Array includes and utilizes the highest level security systems to ensure maximum protection of visitor, server and developer data. Aestiva believes the security measures it has taken make Array one of the more secure development environments on the web today.
Array accomplishes this by utilizing:
- Security By Default Design (SDD)
- Automated Data-Checking (ADC)
- Compatibility with industry-standard HTTPS
- Vertically-Integrated Security Framework (VISF)
Security-by-Default Design (SDD)
SDD is a design philosophy that requires products be securely configured at delivery time.
The Array (HTML/OS) engine follows the SDD objective. While the objective may appear obvious to many, SDD is not accepted practice in some popular web development environments. As a result, developers in other web programming environments may be required to be security experts, or contract with security experts, to develop well-secured websites and browser-native products.
When developing products with the HTML/OS programming language, the developer is not required to be a security expert since ADC security measures are built into the engine. Aestiva recognizes the fact that most web developers are not (and will not become) fully knowledgeable in web security.
Automated Data-Checking (ADC)
The HTML/OS web engine used by Array performs data integrity checks to ensure data passed to it from the web is proper and allowed. By default, data cannot be passed into Array unless it is explicitly allowed by the web developer. The data checking extends across all data passed into the engine including data passed in as variables.
Compatibility with industry-standard HTTPS
Array works seamlessly with HTTPS, an industry-standard secure web protocol that delivers secure transport of data over the web.
Secure transport is required in situations where trust cannot be assumed by parties in network-proximity to the hosted server.
All Array applications can be run using the HTTPS protocol. Secure logins are available for accessing the development environment over the HTTPS protocol. This allows secure editing of server-side content for situations demanding the highest level of transport security.
Vertically-Integrated Security Framework (VISF)
Array is a vertically-integrated engine with a vertically-integrated security framework. Data passing utilizes HTTP and HTTPS only. Data is also confined to a server-side sandbox, delivering added server protection.
To safeguard against future security infractions Aestiva, in addition to its own measures, welcomes Aestiva customers to review and test Aestiva Array's security framework.