Keep your business running through any disruption. Continuous replication and automated failover ensure industry-leading RPO/RTO across our Dubai, Fujairah, and Vienna data centers.
Security
Shared Responsibility Model
Cloud security is a partnership. Bamboozle Web Services secures the infrastructure that your services run on, and you are responsible for securing the workloads, data, and applications you run on that infrastructure. Understanding where our responsibility ends and yours begins is essential for maintaining a strong security posture.
What Bamboozle is responsible for
Bamboozle maintains full responsibility for the security of the cloud — the physical and virtual infrastructure that powers all our services.
| Layer | Bamboozle's responsibility |
|---|---|
| Physical data centers | Physical access controls, environmental controls, power, cooling, CCTV, on-site security |
| Network infrastructure | Core network hardware, DDoS mitigation, network segmentation, BGP routing security |
| Hypervisor and virtualization | Hypervisor patching, VM isolation, memory protection between tenants |
| Storage infrastructure | Storage hardware, encryption at rest, redundancy, drive destruction |
| Control plane | API security, control panel availability, employee access controls, audit logging |
| Managed services | For managed products (Managed Databases, Kubernetes), OS patching, software updates, backups |
What you are responsible for
You are responsible for the security of everything you put in the cloud — your operating systems, applications, data, and how you configure Bamboozle services.
| Layer | Your responsibility |
|---|---|
| Operating system | OS updates and patches, user accounts, SSH configuration, installed software |
| Applications | Application code security, dependency updates, web application firewall configuration |
| Data | Encryption of sensitive data in transit and at rest within your application, backup management |
| Access management | SSH keys, API tokens, team member permissions, two-factor authentication on your account |
| Network configuration | Firewall rules, VPC configuration, exposed ports and services |
| Monitoring | Application-level monitoring, log management, intrusion detection within your VMs |
Infrastructure as a Service (IaaS)
For IaaS products such as Cloud VMs and Bare Metal, Bamboozle secures the system and network your service runs on — inclusive of the management control plane. You are responsible for everything running on top of that infrastructure including the operating system, runtime, middleware, applications, and data.
Platform as a Service (PaaS)
For PaaS products such as Managed Databases and Kubernetes, Bamboozle extends responsibility further up the stack. Secure configuration, access management, patching of the managed platform, and automated backups are all part of the as-a-Service model. You remain responsible for your application code, the data you store, and how you configure access to the managed service.
Colocation
For customers colocating their own hardware in Bamboozle facilities, Bamboozle provides physical security, power, cooling, and network connectivity up to the rack port. You are responsible for the security of your own hardware, operating systems, applications, and data from that point forward.
Practical steps to secure your environment
- Enable two-factor authentication on your Bamboozle account
- Use SSH keys instead of passwords for VM access
- Apply Cloud Firewall rules to restrict access to only necessary ports and source IPs
- Place resources that do not need internet access in a private VPC
- Keep operating systems and application dependencies up to date
- Enable Advanced Backup for all critical VMs and servers
- Review our Security Best Practices guide for detailed guidance
Contact Us
For questions about the shared responsibility model or to discuss your specific security requirements, contact us at [email protected].