Liberty Create

Platform and Application Security

The Liberty Controller provides the central point-of-management for the Create platform and provides all the security, management and governance controls that are critical requirements for an enterprise-grade low-code platform.

Liberty Create is a highly flexible platform that has been designed from the ground up. It’s scalable, secure, fast, flexible and rich in features and capabilities to manage data and process. The primary option to deliver this is within the AWS (Amazon Web Services) Public Cloud.

Netcall is responsible for providing, supporting and managing all of the platform infrastructure and has independently audited ISO9001 and ISO27001 accreditations. In order to provide end-to-end security and end-to-end privacy, AWS builds services in accordance with security best practices, and provides appropriate security features in those services.

Confidentiality, integrity, and availability of data is of the utmost importance, as is maintaining trust and confidence. Platform and Application security is key for us and you.
GDPR compliant
As a European software company, GDPR support has been built into the platform from its inception. This includes access policies, encryption support and more.

Liberty Create uses a modern industry standard model trusted by many to deliver a flexible and scalable Platform-as-a-Service (PaaS) for every scale of enterprise. The primary option to deliver this is within the AWS (Amazon Web Services) Public Cloud.

For those wanting to build Liberty Create applications, we are also able to offer a bespoke private cloud option for hosting.
Platform and Application security is as important to us as it is to you. For each major release, independent security validation is performed on the platform. Extensive security and governance controls are provided from the ‘Controller’ as the central point-of-management for the platform. Here, all of the security covering all aspects of the platform are managed.

What’s included

Roles and privileges
Roles are used to determine the level of access and privileges within a Liberty Create deployment. Each Role may be specific permissions that determine the level of access to the system they will have.
Studio access
Using Roles, you can decide which users have access to the different Studios in the platform and if they do, what parts of it they can access and use. 
Firewall and access profiles
This allows you to block or allow IP addresses to be accessible from the application. You can also select what browser domains can be trusted to contribute to the application along with those that can use the content from the application.
Security policy
These can be set for individual applications with control over user authentication settings and flows, including two-factor authentication (2FA) and firewall policies.
Single sign-on
Single Sign-On (SSO) allows you to configure an SSO Identity Provider system to pass login credentials to auto-authenticate for Liberty Create deployments. Liberty Create supports OpenID Connect, JSON Web-Tokens (JWT) and Security Assertion Markup Language 2.0 (SAML). 
Communication services
Liberty Create uses secure web connections (HTTPS) for web traffic, SMTP for inbound and outbound email and global coverage for the delivery of SMS messages utilising over 850 networks.
Network security
Extensive network security controls are in place with users accessing the solution address via a secure 256bit TLS (SSL) link.
Audit trails
Extensive records are kept for every change made to the system identifying the activity, user and time of changes. In the Page Builder, a History tab allows you to revert back to a previous version of the page.
Nightly database backups are taken and encrypted on the database servers and machine backups are taken within the Cloud platform as disk ‘snapshots’.