Protecting your content with a secure environment

At RWS, the security of our customer’s information is paramount to our business. RWS pledges to protect your business and data with state-of-the-art technology supported by our people, policies, and procedures. For some time, Trados Cloud has had numerous security measures in place – you can access a whitepaper at https://www.rws.com/legal/security/ to find out more. We have now taken this security one step further with the introduction of IP allow-listing to prevent unauthorized access to your Trados tenant from users outside of your organization.

Why is this useful?

IP allow-listing provides a range of benefits including:

• Secure access control: Only users from allowed IP addresses can access the system, reducing the attack surface. Even if credentials are compromised, an attacker outside the allow-listed IP range cannot gain access.
• Regulatory compliance: Helps meet industry standards like ISO-27001, HIPAA, SOC 2, and GDPR. It is particularly useful for regulated industries such as finance, healthcare, and government.
• Monitoring: It is easier to track access patterns and detect anomalies. Known IP ranges make log analysis and forensic investigation more dependable and meaningful.
• Integration control: Only approved systems can communicate with the tenant which prevents data leakage to untrusted systems.
• Mitigation of brute force attacks: Restricting access to trusted IP addresses limits attack vectors like brute-force logins or credential stuffing.

How It works

Tenant administrators can specify individual IP addresses or IP address ranges which are authorized for access. To prevent accidental lockout, users can also be added to a new group which makes them exempt from IP restrictions. Regardless of where the user attempts to connect from, their IP addresses and user are validated against the restrictions in place, and they will either be allowed or denied access to the tenant.

FAQs

Can I specify individual IP addresses and IP ranges?

When adding entries to the list you can specify either a range or an individual address.

How will this work for remote workers?

To cater for remote workers, administrators will need to manage the ranges dynamically to ensure that these workers are not locked out of the tenant.

Do I still need MFA?

IP allow-listing does not replace security controls like MFA, encryption, or behavioral monitoring; it is a complementary security feature.

Can I allow individual users to bypass the IP restrictions?

As a failsafe mechanism, users can be added to a new group to indicate that they should not be subjected to IP restrictions when they log in to the tenant.

What if I make a mistake and lock myself out of my tenant?

In the unexpected event that your tenant is inaccessible due to IP restrictions, you can contact RWS Support who will be able to help you gain access to your tenant again once they have validated your identity.

Learn More

If you are interested in having IP allow-listing added to your Trados tenant, simply get in touch with us to find out more about the feature and pricing.