Dovetail employs industry-standard techniques for detecting and preventing possible intrusions. Detected intrusions can result in escalation through incident response procedures.
IDS & IPS
Dovetail utilizes Amazon GuardDuty as an Intrusion Detection System (IDS) and as an Intrusion Prevention System (IPS).
GuardDuty continuously monitors for malicious activity and unauthorized behavior to protect Amazon Web Services accounts, workloads, and data stored in Amazon S3. GuardDuty employs machine learning, anomaly detection, and integrated threat intelligence to identify and prioritize potential threats.
Firewall
Dovetail is protected by Amazon's web application firewall (WAF) and assists in blocking common web exploits and attack patterns. Dovetail manages a number of firewall rules, including rules that address issues like the OWASP Top 10 security risks.
Brute force prevention
The Dovetail web application employs log in attempt rate limited with automated account lockout and secure password reset practices to prevent against brute force attacks. We also maintain a large email domain blacklist to prevent malicious actors and spam.