We know security is one of our clients’ biggest concerns. Not a single business indicator, corporate directive or corporate record should ever fall into the wrong hands. That’s why our architecture relies on message encryption and password protection that is never stored in the device, nor sent over the air.

It combines the idea of low exposure with strong security procedures to maximize safety and minimize risk.

Leapfactor’s Four Security Commandments:

1. Leapfactor’s software components will never store or use personal enterprise credentials.
2. LeapCentral will never store customer information longer than as stipulated by customers.
3. Customer data and communications will always be encrypted on the server and at the device level, regardless of channel security methods in place.
4. LeapFactor’s software components will never perform a direct transaction on customer system.

LeapAgent Security

Leapfactor designates each appliance or device as a unique point of contact with LeapCentral and each point of contact has a unique private certificate to guarantee secure communications. LeapAgent’s web services require strong authentication and a known IP address to push or retrieve content and VPNs may be used for increased and tighter security.

Device Security

The first time an employee downloads the application to his/her smartphone, the system will request an enterprise ID and will require an activation key provided by IT through separate channels. Upon user registration, devices don’t fully activate until system administrators validate user accounts based on device IDs and then install a definitive certificate.

Users are required to define a 6-number PIN, used to support non-denial and provide access to the stored certificate. Hashed passwords are stored in the device and in the server to allow access through web-extensions. System administrators can disable accounts and even activate poison pills on lost devices to destroy local content.