D2L hosted services are provided on Amazon Web Services (AWS). Physical and operational security processes are described for network and infrastructure under AWS’ management, as well as service-specific security implementations documented in Amazon Web Services: Overview of Security Processes, which outlines AWS’ data centre controls such as:
- Physical and Environmental Security
- Fire Detection and Suppression
- Power
- Climate and Temperature
- Management
- Storage Device Decommissioning
o AWS uses the techniques detailed in NIST 800-88 (“Guidelines for Media Sanitization”) as part of the decommissioning process. - Amazon’s infrastructure fault tolerant design
o Core applications are deployed in an N+1 configuration, so that in the event of a data center failure, there is sufficient capacity to enable traffic to be load-balanced to the remaining sites. - Certification
o AWS holds numerous security certifications, which can be reviewed at https://aws.amazon.com/compliance/