The security system of the ESS-Databridge™ is built around a multi-tiered approach which ensures the integrity of the system and the privacy of Users' data.

Users authenticate themselves to the system using a two-factor authentication mechanism. Strong authentication is achieved using

• something the User has (e.g. a security token); and
• something the User knows (e.g. a password).

This strong authentication protects against unauthorised access to the ESS-Databridge™ and unauthorised creation, signature or transmission of eDocs.

Access to ESS-Databridge™ eDocs and functions are strictly controlled by the Exchange's role-based security model. User capabilities are assigned when a User is registered on the Exchange by ESS. User authorization checks are made in real-time to determine whether a User has the corporate authority and has been granted the ESS-Databridge™ capability to perform specific functions such as "sign" an electronic bill of lading (eB/L) or "send" an endorsed eB/L.

ESS data centres have a number of certifications: (i) CICA 5970; (ii) SAS 70 Type II; (iii) PCI Level 1. ESS-Databridge™ hosting environments demonstrate the following characteristics:

• redundant and geographically diverse data centres with failover systems;
• multiple firewalls in each data centre;
• antivirus, anti-malware & anti-spyware tools;
• intruder detection;
• earthquake-proof facilities, with multiple redundant power supplies;
• 24/7/365 security of data centres; and
• strictly controlled physical access to data centres.