Built for security from the start

Yarkon is fully integrated with AWS IAM. It will never allow any end user any permission that was not explicitly granted by the AWS Admin of the account. You can apply any access policy in IAM, and Yarkon will follow it.

API keys are never shared with end users; end users only get short lived session based API keys. The system administrator can always promptly revoke a user access to the system, at any time.

User access can be defined at the account, role, group or user level. Permissions can be set at the bucket or folder level, and can be any combination of read-write and read-only.

The admin can optionally enforce strong passwords, and make users change passwords when their account is created. For extra security, users will be locked out after three failed login attempt – the administrator can unlock users at any time.

Your files, your account

The Yarkon web client application communicates directly with S3. Your documents never touch our servers, or routed through any other service.

There is no need to make any changes to your AWS S3 account. When you use Yarkon to upload or download a document or a folder, your data access cost would be the same as when using the AWS Console.

Yarkon works across AWS regions; the user interface can show buckets from different regions and support all actions between them, same as it does for buckets in the same region.

Enterprise grade security features

Industry standard data security encryption
Yarkon uses AES encryption to secure all account data stored. All user passwords are one-way hashed using the bcrypt algorithm. The TLS protocol is used to secure all network communication between the client and our platform or AWS.

AWS secured infrastructure
The shared edition of Yarkon is hosted by AWS, following all security guidance and best practices.

Single Sign On
Yarkon Server supports SSO using SAML2, so you can integrate Yarkon into your existing infrastructure.

Deployment options for every customer

Different customers have different needs and different security requirements. That’s why Yarkon can be deployed to fit every situation.

You can use the shared Yarkon Cloud, hosted by us. Or, you can host Yarkon in your own Virtual Private Cloud, by deploying the Yarkon Server.

Yarkon is also available as a docker container.