Session Security

At Nubespecs, we understand the importance of ensuring the security and privacy of your sessions. This section is dedicated to explaining how we safeguard your session information, ensuring that only you or those with whom you share remote access can view your session. In the following points, we will explore the scenarios in which this protection is crucial and how we achieve this security.

01.

Beneficiaries of Session Security

This section is relevant for individuals who use software to work with confidential or copyrighted information. It is also valuable for those who access bank accounts, personal or work emails, and download files containing sensitive, secret, personal, confidential, or legal information. Additionally, it is beneficial for people who browse the internet to access various websites.

While users can access a wide range of websites, we have implemented a special firewall through Cloudflare that denies access to certain sites, such as those related to pornography, gambling, and piracy. However, please note that we do not retain a copy of your browsing history or personal searches. All unauthorized website blocking occurs within the operating system and Cloudflare’s security system, and no notifications are sent regarding these blocks.

Other individuals who may find this information useful include those accessing international banking entities. It’s important to clarify that Binance Holdings Ltd., known as Binance, is not accessible through our service. However, users can access all other banks worldwide, provided they allow access and their data remains secure. Additionally, individuals concerned about their security can rest assured that only they will have access to their data and information.

Beneficiaries:

  • Individuals using software for work involving confidential or copyrighted information.
  • Those accessing bank accounts, personal or work emails, and downloading sensitive files.
  • People browsing the internet for various purposes.
  • Individuals concerned about their security.

02.

What to Expect and Not Expect from the Session Security and Data Protection System

This section outlines what users can anticipate from our internal security system, data encryption, and information protection. It also clarifies what users should not expect from the security and data protection system.

What to Expect

  • Users should expect their sessions to be protected from espionage, ensuring that third parties cannot observe their activities in the virtual workspace.
  • They should also expect that others cannot store, capture, or record their data, whether stored on volumes or hard drives or viewed from a web browser and the entire screen of the operating system they are using.
  • Furthermore, users should expect that no one can capture their emails, passwords, usernames, security questions, profile pictures, or other personal information from their private profiles.
  • They should also expect their browser histories to remain private and inaccessible to third parties.

What Not to Expect

  • Users should not expect the security system to prevent third parties to whom they grant access to their sessions from seeing their information, as these individuals or systems can view and capture all the information on their screen that they allow.
  • They should not expect the system to prevent the websites they visit from capturing the personal data they share with them.
  • Users should not expect that the browsers from which they access do not record their histories, and if they log in with their personal accounts on these browsers, they should not expect that the browsers do not associate their intentions and searched sites with their accounts.
  • Users should not expect the security system to predict any installation of software containing malware that they have downloaded from any source and that the system can prevent these malicious files from accessing their data and personal information. Therefore, users should ensure they only download licensed software, not activated by cracks, keygens, or any other illegal activation method.
  • Users should not expect the system to hide or mask the real connection of the connection from where they are accessing; therefore, their social media accounts, digital profiles, and banks may know that they are accessing from our private network in the U.S., and if necessary, it is their responsibility to notify whoever may be interested to avoid the interruption or blocking of their profiles.

03.

How Your Information Is Secured within OpenStack Instances

We leverage OpenStack, an open-source platform for designing and managing private and public clouds, to create a secure environment for your virtual sessions. Specifically, we focus on how your information is safeguarded within the Windows 10 Pro and Windows Server 2022 virtual instances running on our platform.

Virtualization and Resource Management

Nubespecs configures OpenStack to virtualize resources such as storage, CPU, and RAM from the underlying hardware. This ensures that each virtual instance operates within its isolated environment, preventing data mixing between different virtual machines.

Security Measures in OpenStack

We implement OpenStack’s robust security measures, including authentication and authorization, to ensure that only authorized users can access virtual instances. Additionally, we use detailed monitoring and control capabilities to set access policies and restrictions, enhancing data protection.

Isolation of Virtual Instances

Using hypervisors like KVM or Xen, we configure OpenStack to isolate virtual instances to prevent data breaches. Each instance runs in its isolated space, ensuring that data remains secure and inaccessible to unauthorized users.

Access Control to Resources

We utilize OpenStack’s security groups to specify rules for network traffic. For example, we can block unused ports or restrict access to specific services, enhancing overall security.

Windows 10 Pro and Windows Server 2022 Security

Nubespecs ensures that the operating systems are updated with the latest security patches. Additionally, we install antivirus and antimalware software and configure Group Policies to restrict permissions and control resource access, further enhancing security.

Database Updates and Security Control Actions

We perform frequent updates to the system database and regularly renew the vulnerability database to enhance security. Your data will always be secure from our end as long as you do not share your session with a third party or share your information with third-party sites over the internet.

04.

Ensuring Secure Navigation on Nubespecs

At Nubespecs, we prioritize both the security of our clients’ remote computing sessions and the safety of their interactions with our website and web services.

Our dedication extends to ensuring that these services remain secure and up-to-date at all times.

Key Practices:

  1. No Personal Data Storage on Our Website: Unlike some competitors, we do not store any personal information directly on our website (nubespecs.com) for login or other purposes. Instead, we securely store all client data with specialized third-party providers such as Patreon or Gunroad. Additionally, sensitive information remains protected in our email inbox.
  2. Secure Handling of Credit Card Data: We do not store credit card information within or outside our website. Instead, we rely on third-party services with extensive expertise in secure payment processing. Clients can rest assured that their payment details are not compromised.
  3. Direct Client Support: Our customer support is exclusively handled by our trained in-house team. We do not outsource customer interactions to third-party services, ensuring a personalized and secure experience for our clients.
  4. No Third-Party Servers or Data Centers: We avoid using third-party servers or directing clients to data centers acquired from GPU marketplaces. Our infrastructure is carefully managed to maintain security and reliability.
  5. Persistent User Information: User data is retained securely even after the remote session ends. This allows clients to access their information with the same hardware specifications they initially requested, as outlined on our website.
  6. No Additional Charges for Data Transfers: We do not impose extra fees for data transfers, including file uploads, downloads, or private browsing.
  7. Transparent Pricing: Our website navigation incurs no additional charges. Clients can explore our services without unexpected costs.

We remain committed to providing a secure and seamless experience for all our users.

Thank you for choosing Nubespecs.

This Session Security document is drafted in English. If there is a translation, only the English version shall be contractually binding. This document was last edited in July 2022.Â