Security

Various measures are taken to ensure that Casebox has a high level of security, including:

• Casebox installations are encrypted, meaning that all data sent and received during a connection cannot be read/understood by third parties.
• The source code for Casebox has been audited by independent experts.

Users should take the following measure to ensure that their Casebox instance remains secure:

• Use strong passwords
• Log off the system
• Use two-factor authentication (two-step verification)

It is highly recommended to enable the two-factor authentication as it improves account security. For this purpose, Casebox supports the Google Authenticator and Yubikeys.

Click on "Account", and then select "Security".

When two-factor authentication is enabled, you can select the preferred method and follow the given instructions.

Option 1:

Google Authenticator is a mobile application, that generates unique numbers. If you choose this verification method, you will need to install and activate the application on your phone. Next time when you log in to Casebox, after providing the password, you will be asked for the two-factor authentication code generated by your mobile phone.

Option 2:

Yubikey is a One-Time Password (OTP) generator device. It generates a unique sequence of characters as an OTP every time you press the key. Yubikey is enabled by verifying the code issued by your device. Next time when you log in to Casebox, after providing your password, you will need to insert and press your Yubikey. You will automatically get access to your account.