Akilaah - Frequently Asked Questions

Frequently Asked Questions

Get knowledgeable about Akilaah with answers to common question asked by our users

Security Questions

When building a financial web application, security is of utmost importance to protect sensitive user data and financial transactions. Here are some security-related questions and considerations we addressed:

We use multi-factor authentication (MFA) with secure methods like SMS, email, or app-based authentication, this way we verify who our users truly are.We also employ strong password policies and securely store hashed passwords.

We employ the transmission of data over HTTPS using strong encryption protocols, then encrypt sensitive data at rest using industry-standard encryption algorithms.

We implemented role-based access control (RBAC) to manage different levels of user access, securely handling and validating authorization tokens.

We use secure session management techniques, including session timeouts. We also implemented secure session handling practices to prevent session hijacking.

We validate and sanitize user inputs to prevent SQL injection, XSS, and other injection attacks.

We employed server-side input validation and implemented Content Security Policy (CSP).

We Implemented a secure account recovery process with 2 Factor authorization, ensured they are secure and not susceptible to social engineering attacks.

We log system activities, and regularly monitor logs for suspicious activities.Restrict access to logs and ensure they are stored securely.

We Validate and sanitize data received from APIs to prevent injection attacks.

We Implemented anti-CSRF tokens to protect against CSRF attacks.

Regularly update dependencies and libraries to address known vulnerabilities.

We verified the security practices of the third-party providers we work with.