Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Does Atlassian's Confluence security implementation comply with any IT Security implementation standard?

Doods Perea
Doods Perea April 22, 2012

Our client wants to know if Confluence Security (http://confluence.atlassian.com/display/CONF35/Confluence+Security) complies with security standards as expected and applied in the IT industry (i.e. ISO 27002, ITU).

Answer
Watch
Like Be the first to like this
268 views

1 answer

1 accepted

1 vote
Answer accepted
PeterKoczan
PeterKoczan
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
April 18, 2013

Hi,

Generally Confluence is just an application that relies on various environmental features, thus compliance itself can only be guaranteed if the implementation and the environment is up to those standards. Even the components that are shipped with Confluence installer (Tomcat, JDK/JRE) has to be kept up-to-date, this is why Confluence as an application can only comply with standards if all the circumstances are met.

I understand that this can be problematic, but one feature of Confluence is that it can be implemented in various environments, but for those always the administrators are responsible, so such compliance can be verified for each environment as a whole by an audit.

Regards,

Peter

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events