※This page is provided via machine translation. For any clarification, please reach out to support@assured.jp.
The Assured system gathers public information about cloud services by automatically scanning their URL operating within the scope of general web access. We do not perform aggressive actions such as bypassing authentication or conducting port scans.
■Information Collected
The public information we collect includes:
・Domains related to the target cloud service: This covers the application's domain and any associated subdomains.
・IP addresses resolved from the domain: The IP address that the domain points to.
・Domain-related settings registered in DNS.
・Web page content resulting from requests to the application's URL. This includes HTTP response headers, Cookies, and SSL certificate information.
・Other third-party data sources.
■Access Frequency
Each scan involves several requests. Scans are performed approximately once every two weeks.
■Identifying Our Access
When the Assured system sends requests, it includes the following information, which you can use to identify access from our system:
・Request source IP address: 34.146.97.49 or 34.146.48.1
・Request User-Agent: Includes the string Assured/1.0
■Information for Cloud Service Providers
For details on improving your evaluation or opting out of the Web Assessment feature, please refer to:
📝 (For Businesses) Q&A about the Web Assessment Feature