Overview

Cloudian HyperStore is a scalable, S3‑compatible object storage platform engineered for robust data security and compliance. It integrates advanced features like data immutability (WORM/Object Lock), FIPS‑validated encryption, secure delete, and multi‑tenancy, making it well-suited for environments requiring regulatory assurance and ransomware protection. HyperStore’s architecture ensures resilient, encrypted storage both in-flight (TLS 1.2/1.3) and at-rest (AES‑256), while integrating with LDAP/AD and IAM for granular access control.

Features and Capabilities

• Data immutability / ransomware protection:
• S3 Object Lock enables WORM functionality to prevent deletion or encryption before the retention period ends. A hardened shell and disabled root access prevent system-level tampering.
• Security certifications:
• FIPS 140‑2 Level 1 validated. Compliant with SEC Rule 17a‑4(f), CFTC 1.31, FINRA 4511c, German IDW PS 880, and Swiss OR §§ 957ff. Data sanitization conforms to NIST 800‑88 standards.
• Data encryption at rest:
• Uses AES‑256 encryption at bucket and object level. Supports SSE, SSE‑C, and integration with third‑party key management systems (KMS).
• Data encryption in transit:
• Supports TLS 1.2 and 1.3 over HTTPS with configurable custom certificate authorities or self-signed certificates.
• Secure multi‑tenancy:
• Enables multiple users or groups, each with their own quality-of-service policies, billing configurations, and access credentials.
• Authentication & IAM:
• Integrates with LDAP/Active Directory for administrative access. Implements Amazon-style Identity and Access Management (IAM) for object-level permission control within the root account.
• Secure Delete:
• Overwrites deleted data in accordance with NIST 800‑88 standards. Includes audit logging to ensure compliance with secure deletion policies.
• Hardened infrastructure:
• Utilizes a secure HyperStore shell, disables root access, and complies with rigorous regulatory frameworks such as Cohasset SEC17a-4 for infrastructure security.