Hello,
Zynstra would like to apply to join the Xen Hypervisor Project security pre-disclosure list.
Below, answers to the questions asked on your Security Policy page:
The name of your organization:
Zynstra Ltd
Domain name(s) which you use to provide Xen software/services:
Zynstra.com
A brief description of why you fit the criteria:
Zynstra has been delivering software and services using Xen Hypervisor since 2010.
Zynstra employs Xen Hypervisor in all its “Cloud Managed Server” products to provide multiple hosts for services such as user file shares, domain controllers network functions, security functions and custom application
payloads.
Xen Hypervisor and the software it hosts is provided as a service, backed by Zynstra’s team of 16 developers and 11 managed-service support staff.
If not all of your products/services use Xen, a list of (some of) your products/services (or categories thereof) which do:
All Zynstra’s products use Xen Hypervisor.
Link(s) to current public web pages, belonging to your organization, for each of following pieces of information.
Evidence of your status as a service/software provider (If you are a software provider, how your software can be downloaded or purchased):
Information about Zynstra’s products using Xen:
http://www.zynstra.com/hybrid-it-platform/how-it-works/
Evidence the product is available for purchase. Get a quote page -
http://www.zynstra.com/get-a-quote/
Evidence the product is available for purchase. Customer testimonials -
http://www.zynstra.com/why-zynstra/customer-stories/
Statements about, or descriptions of, your eligible production services or released software, from which it is immediately evident that they use Xen:
See ‘Virtualization Platform’ towards the end of… –
https://support.zynstra.com/hc/en-us/articles/115003505785
Release notes showing update to Xen Hypervisor version used (see page 3) -
https://support.zynstra.com/hc/en-us/articles/206809339
Your invitation to members of the public, who discover security problems with your products/services, to report them in confidence to you;
Specifically, the contact information (email addresses or other contact instructions) which such a member of the public should use:
Security.notification@xxxxxxxxxxx
This email address goes to a number of senior architects only, who have been briefed on the responsibilities relating to the Xen pre-disclosure list
This address is publicized at
https://support.zynstra.com/hc/en-us/articles/201218972 and
https://support.zynstra.com/hc/en-us/articles/115003195289 on the Zynstra support portal
A statement to the effect that you have read this policy and agree to abide by the terms for inclusion in the list, specifically the requirements to regarding confidentiality during an embargo period:
I confirm that I have read this Policy and that Zynstra Ltd will abide by the requirements regarding confidentiality during an embargo period.
The single (non-personal) email alias you wish added to the pre-disclosure list:
Security.predisclosure@xxxxxxxxxxx
If you have any other question, feel free to email me back.
Thanks for your time and consideration.
Regards,
James Pullen
Product Manager
Phone: +44 (0)7977 468 030
Zynstra is a private limited company registered in England and Wales (registered number 07864369). Our registered office and Headquarters are at The Innovation Centre, Broad Quay, Bath, BA1 1UD. This email, its contents and any attachments are confidential.
If you have received this message in error please delete it from your system and advise the sender immediately.