NEW GEN OUTDOOR

  • FAQ

    We review applications for security vulnerabilities and address any issues prior to deployment to production.

    Once an issue is identified, our process is to place issues into our current sprint for development. 

    Once item has been developed it will be subject to peer code review and then will be passed to QA department that will review and test items. 

    A hot-patch is generated for the solution in to our production environment for urgent patches.

    User can access only with their login and password. All requirements and trust levels for customers’ access have been defined and documented.

    Customers’ data are stored in in a multi-tenant database databases and are not encrypted.
    Access policy for the customer is set on application level.

    For PackCity locker system, SLA is the following:

    Priority level

    Issue level

    Resolution Target Datacenter

    Resolution Target Software

    Priority 1 – P1

    Critical

    90% <= 3 hours

    90% <= 3 hours

    A service, system, network and/or a piece of configuration identified as Business Critical is totally down. The issue shows on or more of following points:

    • No functionality is accessible
    • File exchange (EDI) on critical flow is not possible
    • A majority of users on one or more sites are impacted
    • No issue bypass available/possible.
    • Disaster in progress with a critical business impact

    Priority 2 – P2

    Major

    90% <= 8 hours

    90% <= 1 day

    This applies when a service, system, network, software or piece of configuration can be used but with low performance and/or with very limited functionalities. Customer operation can continue in degraded mode. The issue shows one or more of following points:

    • Related to a critical service, network, software or piece of configuration but in a less urgent context than in Priority 1
    • Some functionalities are unavailable, the system can be operated in degraded mode, but a solution must be provided quickly
    • The issue or slowness appears in a period considered as Critical

    Priority 3 – P3

    Minor

    90% <= 3 days

    90% <= 15 days

    This applies to issues with limited effect on customer operation or software availability, meaning that the application is lightly degraded. Hereunder a list of possible minor issues:

    • Issue where a customer acceptable bypass is available
    • Slowness of the File exchange service (EDI) on non-critical data flows

    Priority 4 – P4

    To Be Scheduled

    Next release

    Next release

    This applies to issues having no effect on customer operation. Hereunder a list of possible P4 issues:

    • Issues on user interface having no impact on functionalities

    Each exposed component is hosted in its own DMZ. Explicit firewall rules between DMZ are applied to allow known traffic only. Access to database server is limited to requests only from these DMZs.

    The servers and web site are based on LAMP (Linux / Apache / MySQL / PHP) servers.
    More FAQ's...