Additional Security Enhancements


Today we are adding additional features designed to enhance the security of our platform.

  • Publishing a Content Security Policy (CSP), as well as other enhanced security headers
  • Integrating a CSS Font-face Service
  • Introducing 2 new authentication options for Google and Facebook

Content Security Policy provides a definition to web browsers of what connections are considered permitted and what is not. This reduces the potential for unwanted 3rd party code to be included with content

CSS Font-face service is designed to remove CSS rules contained within 3rd party self-hosted fonts that could affect the presentation of content

Google and Facebook authentication options provide our users options to avoid creating additional credentials on our application. Our authentication services are managed via Amazon “Cognito” product.

Alpaca will continue to focus on improving overall application security opportunities.

Security headers scoring a high “A” level rating, according to