A Secure Telehealth Platform by Design
User Login and Database Security
No login information is retained by the Vidyo soft clients. For organizations that use an external database for user account management, LDAP, SAML, and Active Directory (AD) are supported.
All Vidyo endpoints connect through the cloud and are not directly accessible from another endpoint. Even on public networks, Vidyo endpoints are protected from unauthorized direct access through an IP address. The architecture provides the endpoint with a built-in layer of security from third-party hacking and voyeurism.
HTTPS with certificate support on login
Encrypted tokens for session security
Signaling and Media Encryption for Secure Telehealth
It is vital to secure from would-be hackers the signals that different components within the Vidyo architecture use to communicate with each other. Similar to the way online banking access is secured, VidyoConnect uses industry-standard public key infrastructure (PKI) to issue each component a digital certificate by a trusted third-party certifying authority, allowing endpoints to verify the identity of VidyoConnect and also helps prevent malicious users from eavesdropping on communication.
VidyoConnect uses AES encryption over Transport Layer Security (TLS) for Vidyo endpoint and server communications with certificate support. Vidyo supports Elliptic Curve Diffie-Hellman (ECDH), Diffie-Hellman (DH), or RSA for key exchanges.
To help protect the content of your Vidyo conferences from being intercepted and decoded without your knowledge, VidyoConnect also employs AES encryption over industry-standard SRTP for audio, video, and shared content.