JavaScript is turned off in your web browser. To take full advantage of Ribose features, please enable JavaScript and refresh the page.

Ribose receives Hong Kong’s first SOC 2 / 3 reports from Ernst & Young -- Compliant to newly released AICPA TSP 100 common criteria and CSA’s CCM

Hong Kong, 15 December 2014 – Ribose received its first Service Organization Controls (SOC) 2 and SOC 3 reports – as well as the SysTrust seal – from international auditing firm Ernst & Young (EY).

SOC 2 and 3 are widely recognized attestations, providing independent validation that companies’ internal controls comply with applicable American Institute of Certified Public Accountants’ (AICPA) Trust Services Principles and Criteria (TSP 100).

SOC 2 Type II is an internal control report regarding risks associated with organizations’ services, including detailed testing of controls. SOC 3 is intended for public consumption and includes fewer details than SOC 2.

TSP 100, newly released in 2014, supersedes TSP section 100A from 2009 and features a consolidated set of “common criteria” replacing previously separated principles: security, availability, processing integrity, and confidentiality. This standard applies to attestations after 15 December 2014.

Ribose and EY adopted the revised standard as early as permitted by the AICPA. Ribose’s SOC 2 Type II and SOC 3 reports are based on TSP 100 security and availability principles, together with controls from CSA’s newly launched Cloud Controls Matrix (CCM) 3.0.1.

In completing the attestation, Ribose received the first SOC 2 Type II report in Hong Kong; and became the first organization to receive SOC 2 / SOC 3 reports complying to both AICPA TSP 100 and CSA’s CCM. Ribose’s SOC reports are among the earliest reports utilizing AICPA’s new common criteria.

“This engagement represents a significant milestone for EY and Ribose. We successfully integrated into our existing attestation methodology these new standards and streamlined processes to achieve multiple certifications,” said Vincent Chan, Advisory Services Leader for EY Hong Kong and Macau. “Ribose chose EY as their attestation partner as we are familiar with their operating environment, and our EY professionals have extensive experience and knowledge of cloud operations and security.”

Ribose founder Ronald Tse explained, “Ribose is dedicated to helping people collaborate better; and the quality, security and reliability of our platform are paramount to achieving this goal. Our SOC 2 / 3 examinations demonstrate that we have appropriate controls in place to mitigate security and availability risks – meaning organizations faced with compliance requirements around sensitive data can fully leverage the Ribose platform.”

# # #

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR (CCM 3.0.1) and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000, CDSA CPS and SOC standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About EY

EY is a global leader in assurance, tax, transaction and advisory services. The insights and quality services we deliver help build trust and confidence in the capital markets and in economies the world over. For more information, visit ey.com.

###

 

Read More

Ribose: World’s first cloud service provider certified to Multi-Tier Cloud Security standard achieves highest Level 3 security tier

Singapore/Hong Kong, 8 December 2014 – Ribose, the world’s first cloud service provider (CSP) certified to Singapore’s Multi-Tier Cloud Security (MTCS) program, has recently achieved the highest possible security tier: Level 3.

Initiated by the Infocomm Development Authority of Singapore (IDA) and launched by SPRING Singapore, the MTCS standard (SS 584:2013) specifies stringent security and operational requirements for CSPs, encouraging adoption of sound risk management and security practices. MTCS Certification specifies three tiers of security levels, with Level 3 being the highest. The Singapore Accreditation Council (SAC) has recently launched an accreditation program for MTCS Certification.

Ribose was the first CSP worldwide to achieve MTCS certification in June 2014 with a security tier of Level 1. Following a thorough evaluation by BSI (British Standards Institution), a participating Certification Body for the MTCS standard, Ribose has upgraded its certification to the highest security tier, Level 3 – indicating its platform is suitable for running high-impact workloads, serving business- and mission-critical purposes, and hosting sensitive information as well as highly confidential business data.

“Ribose is proud to be the first Software-as-a-Service (Saas) provider certified to the MTCS standard, and the first SaaS platform to achieve the coveted Level 3 security tier,” explained Ronald Tse, founder of Ribose.  “This is a major milestone for Ribose, confirming our platform’s government-approved security standards for handling users’ highly sensitive and confidential data.”

Owen Xu, General Manager of BSI Singapore, commented, “BSI takes pride in employing the most stringent auditing standards in the industry. With over 60,000 clients around the globe, our experts have audited many of the world’s largest companies and government organizations that require top-notch security. By achieving MTCS at Level 3, Ribose has demonstrated its platform’s security is indeed world-class.”

# # #

About Ribose

Ribose is a cloud collaboration platform that makes working together easy and fun. A forerunner in cloud security, Ribose is the world’s first cloud service provider certified to CSA STAR (CCM 3.0.1) and MTCS. It is also certified to ISO/IEC 27001, ISO/IEC 20000 and CDSA CPS standards, and approved by the UK Government’s G-Cloud program for government use.

Ribose is free to use: ribose.com.

About BSI

BSI (British Standards Institution) helps businesses turn best practices into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI’s standards inspire excellence across the globe: bsigroup.com.

###

Read More

Ribose first Cloud Service Provider to achieve Multi-Tier Cloud Security certification

Compliant to Singapore Standard SS 584, world’s first multi-tiered cloud standard

Singapore/Hong Kong, 5 August 2014 – Ribose has become the world’s first cloud service provider (CSP) to achieve Singapore’s Multi-Tier Cloud Security (MTCS) certification.

Initiated by the Infocomm Development Authority of Singapore (IDA) and developed under the Information Technology Standards Committee (ITSC), the MTCS is a Singapore Standard (SS 584:2013) that specifies stringent security and operational requirements for CSPs to encourage adoption of sound risk management and security practices. The certification specifies three tiers of security certification, with level three being the highest.

Ribose’s level one MTCS certification was awarded after thorough evaluation by BSI (British Standards Institution), a participating Certification Body for the MTCS standard.

IDA Assistant Chief Executive Khoong Hock Yun said, “Cloud computing is a key enabler for Singapore’s drive to become a Smart Nation. Security of the cloud is a critical concern answered by the Multi-Tier Cloud Security standard. We are heartened that global industry players have taken a keen interest in it and are signing on to adopt the measures.”

“BSI has demonstrated its leadership position in cloud security certification by delivering the world’s first MTCS certification to Ribose. Through our global network of BSI offices, we are proud to have been Ribose’s certification partner in several milestone security certification -- including ISO/IEC 27001:2013, CSA’s STAR and now MTCS,” explained Owen Xu, General Manager of BSI Singapore. “These multiple certifications stand as clear testament of Ribose’s dedication to data security and privacy.”

According to Ribose founder Ronald Tse, “By achieving MTCS certification, Ribose has reached another milestone in our commitment to data security and protection. This latest achievement further enhances our comprehensive portfolio of security certifications, giving users the peace of mind to collaborate online with confidence using the Ribose platform. We thank the IDA and BSI for their guidance and support, which have enabled Ribose to become the world’s first MTCS certified cloud service provider.”

# # #

About Ribose

Ribose makes collaborating easy and fun. Whether planning business projects or social events, the Ribose platform helps users collaborate through world-class security certified to the highest standards, including ISO/IEC 27001, CSA STAR, CDSA CPS and IDA MTCS. Also available as part of the UK Government's G-Cloud program, Ribose is free to use: http://www.ribose.com.

For further details, see Ribose on IDA’s Infocomm Resource Marketplace.

About IDA

The mission of the IDA is to develop information technology and telecommunications within Singapore with a view to serve citizens of all ages and companies of all sizes. IDA does this by actively supporting the growth of innovative technology companies and start-ups in Singapore, working with leading global IT companies as well as developing excellent information technology and telecommunications infrastructure, policies and capabilities for Singapore. For more news and information, visit http://www.ida.gov.sg.

About BSI

The British Standards Institution is the business standards company that helps businesses turn best practices of into habits of excellence. As the world’s first national standards body and a founding member of ISO, BSI is an organization whose standards inspire excellence across the globe: http://www.bsigroup.com.

###

 

Read More

Ribose approved for use by all UK Government departments through G-Cloud

Powerful internationally-certified collaboration platform available free of charge

London, 30 July 2014 – Cloud collaboration platform Ribose has been approved for use by all UK Government agencies through the G-Cloud 5 framework. Ribose’s services are now available to over 29,000 UK public sector bodies free of charge.

Consisting of a series of framework agreements with suppliers, the G-Cloud initiative aims to ease procurement of cloud computing information technology services for UK Government departments by eliminating the need for full tenders or competitive procurement processes.

“Now available to all UK Government departments through the G-Cloud framework, Ribose helps agencies collaborate efficiently and effectively online,” explained Ronald Tse, founder of Ribose. “Users can set up online communities within minutes on Ribose, allowing government personnel to work together with external parties in a secure cloud environment – accessible from anywhere in the world at any time, completely free of charge.”

As a leader in cloud security, Ribose is the world’s first collaboration platform to achieve ISO/IEC 27001:2013 certification, the first organization to achieve Multi-Tiered Cloud Security (MTCS) certification from the Infocomm Development Authority of Singapore (IDA) and the first and only organization to have achieved Cloud Security Alliance’s (CSA) STAR Certification at the highest possible Gold rating - satisfying the latest cloud security standard, CCM 3. Ribose has also achieved the CDSA CPS certification for intellectual property security and has consistently been awarded the lowest risk rating possible.

Ribose is also certified to the international standard for business continuity, ISO 22301:2012, as well as the international standard for integrated management systems, PAS 99:2012.

# # #

About Ribose

Ribose makes collaborating easy and fun. Whether planning business projects or social events, the Ribose platform helps users collaborate through world-class security certified to the highest standards, including ISO/IEC 27001, CSA STAR, CDSA CPS and IDA MTCS. Ribose is available through the UK Government's G-Cloud and is free to use: http://www.ribose.com.

For further details, find Ribose on CloudStore and see Ribose’s G-Cloud service.

About G-Cloud

Core to the “Cloud First” strategy, the UK Government G-Cloud consists of a series of framework agreements with suppliers, from which public sector bodies can start using services without going through complex tendering processes.

All government departments, devolved administrations, local authorities, wider public sector bodies and arm’s length bodies are eligible to buy services on CloudStore, an online marketplace listing G-Cloud services available to the public sector.

###

 

Read More

Ribose joins CDSA to promote intellectual property security

Ribose joins CDSA to promote intellectual property security

Facilitating collaboration throughout the intellectual property lifecycle

Hong Kong, 9 June 2014 – Ribose, a start-up redefining the way people collaborate, has joined the Content Delivery and Security Association (CDSA) to promote the development of intellectual property security. Committed to an open Internet, Ribose believes respect for intellectual property is necessary for people to work together efficiently, effectively and enjoyably.

A global forum for electronic intellectual property security, CDSA develops international standards for content protection and security, and performs audits to verify compliance. Its members include the world’s largest intellectual property owners, including Adobe, Sony, Microsoft and the Walt Disney Company.

Ronald Tse, Founder of Ribose, explains, “Ribose is proud to be joining CDSA in working to protect intellectual property. Together, we are joining forces to provide guidance and leadership for the technology industry and cloud service providers – setting parameters to strengthen security and promote responsible content storage and delivery.

“CDSA is delighted to welcome our newest member, pioneering cloud service provider Ribose. By joining CDSA, Ribose has made a strong statement that the Internet’s benefits need not compromise information security or intellectual property rights,” stated James Wise, Director of Anti-Piracy and Compliance Programs of CDSA in Asia. “We are confident Ribose will play an active role in helping innovators worldwide improve the protection of intellectual property.”

As the first Software-as-a-Service cloud service provider to earn certification for CDSA’s Content Security and Protection accreditation program, Ribose upholds strict standards of privacy and security.

“With our commitment to information security and intellectual property protection, Ribose provides a platform users can employ with confidence,” concluded Tse. “We treat our users as collaborators and associates. Our relationships are based on their trust in Ribose’s systems and our respect for their data.”

# # #

About Ribose

Ribose makes collaborating easy and fun. Whether planning business projects or social events, the Ribose platform helps users collaborate through enterprise-strength security certified to the highest standards, including ISO 27001, CSA STAR and CDSA CPS. Also available as part of the UK Government's G-Cloud program, Ribose is free to use: http://www.ribose.com.

About CDSA

The Content Delivery and Security Association is a non-profit organization advocating the innovative and responsible delivery and storage of entertainment, software and information. Among its members are the world’s largest intellectual property owners including Adobe, Microsoft, Electronic Arts, Sony, NBCUniversal and the Walt Disney Company. 

###

 

Read More

Get Started

Getting Started