Security

This page is intended for IT and network administrators.

Connec2 Cloud connects only authorized users with content inside a secured virtual environment.
Below is an overview of the key security measures and architectural principles.

Overview of security measures

Transport communication

TLS 1.3 (SSL) for REST API traffic
AES-GCM-256 for XR traffic (components, voice, and screenshare)
- Optimized for VR performance
- Random, continuously rotating keys during sessions

These protocols ensure that all communication between client and cloud is encrypted, secure, and protected against tampering.

Encryption and authentication

Future-ready end-to-end encryption
- Worlds can be secured with a password
- The same password can be used to encrypt event data
Role-Based Access Control (RBAC) for fine-grained permission structures
Password hashing
- bcrypt hashing with salt for secure credential storage
JWT tokens
- Signed using the HS512 algorithm for session validation and API access

Data and deployment isolation

Database isolation per tenant / workspace
Connec2 Cloud is available in two configurations:
- Public Cloud (default)
  - Hosted at TransIP in Amsterdam
  - ISO 27001:2013 certified
- Private Cloud
  - Available upon request for local or dedicated deployments

Summary

Connec2 ensures privacy, data security, and performance across all layers—from transport encryption to workspace isolation.

By using modern cryptographic standards and a flexible cloud infrastructure, the platform is both secure and scalable for enterprise and educational use cases.

Last updated on April 8, 2026

Platform infrastructure DNS & Whitelisting