Enhancing our security posture and replacing VPNs with Cloudflare

At Recko, we take security very seriously. Given the nature of our product and the service we provide, our security team is continuously working towards making our systems robust while ensuring a seamless customer experience.

Our north star is to make financial operations a breeze for our customers. We have been conducting various surveys to understand how our customers feel about our product. And, that’s when we realized that using a VPN to log in to Recko is cumbersome.

There has always been a tradeoff balancing security and convenience. These two have always taken crossroads. We wanted to offer a smooth login experience for our customers without compromising on our security standards. Our security team has been working relentlessly to find different solutions that would help remove this friction from accessing Recko in addition to strengthening our security posture.

After months of rigorous testing and product evaluation, we decided to integrate Recko with Cloudflare.

Why Cloudflare?

Cloudflare offers an additional layer of enhanced security and protects our systems from malicious activity like DDoS attacks, malicious bots, and other nefarious intrusions. Its Zero trust security is designed to optimize security, performance, and reliability, without the bloat of legacy technologies.

Zero Trust Network Access provides secure remote access to Recko based on a defined set of access control policies. It enhances security by leveraging network filtering, where a user cannot access the application for which they do not have permission. With Zero Trust Network, access is established only after they are authenticated to the service. Cloudflare provides access to the users through a secure encrypted tunnel, thereby adding another layer of protection to the system.

Recko's Promise

We are committed to the security of our customers’ data and provide multiple layers of protection for the information that resides in Recko. Having this in mind, we have made subsequent changes to our login procedure.

  1. Cloudflare with SSO

Users can now log in to Recko by authenticating themselves on the Cloudflare page using the single sign-on.

If the user is trying to access an organization or tenant that they do not have access to, then they will not be able to log in.

2. Two factor authentication

Once the user authenticates with SSO, they need to additionally authenticate themself by providing an authentication code that can be generated using the Google Authenticator application.

How do users access the Cloudflare login page?

The Cloudflare integration will be effective from 10 June, 2021. Post that, by default, the Cloudflare page will show up when a user tries to log in to Recko.

For customers using OpenVPN
Customers using OpenVPN, do not have to enable it going forward. They can securely log in to Recko using Google’s SSO from the Cloudflare page.

For customers using internal VPN
Customers using internal VPN to access Recko may continue to use it.

· · ·
Share this blog: