Data transfer security

This document contains an explanation about the customers' data transfer security at the Hawk system.

Actually, there are two main vectors of users' data transfer: external and internal.

External

There are some public services used by Hawk's customers:

  1. Hawk Garage — service for events monitoring.
  2. Hawk Collector — service that accepts sent events.
  3. Hawk API — publically exposed GraphQL API endpoint.

All these services accept only secured HTTPS connections. That neutralizes the MITM attack ability. And the transferring data will be secured.

Internal

All internal Hawk services are united by our own VPN network, which has multi-level security defense.