Credits

Credits Blockchain as a Service (BaaS)

A platform for deploying and managing blockchain applications and services based on the Credits protocol, providing a flexible and modern framework for adding a consensus layer to both legacy and greenfield services. Suitable for public sector distributed ledger proof of concept and large scale identity use cases.

Features

  • Support for components built on Java, Kotlin, Python.
  • Always-on distributed and redundant architecture
  • Fault tolerant
  • Interoperable Crosschain capabilities
  • Identity management layer
  • Available on Public or Private Cloud Deployments
  • Based on Skyscape Enterprise Cloud Computer Service
  • Multiple Government Networks available including PSN,Janet, PNN & N3

Benefits

  • Faster time to value
  • One-click code push to Platform
  • Advanced architecture eliminates most downtime scenarios
  • Identity-aware out of the box
  • High availability and automatic failover
  • Create new services in minutes not months
  • SkyScape: UK sovereign assured cloud platform
  • SkyScape: Optimised for OFFICIAL & OFFICIAL (Sensitive)
  • Assured; hosted in the UK by SC cleared operatives

Pricing

£99 per instance

  • Excluding VAT
  • Minimum contract period: Month
  • Trial and free options available

Service documents

G-Cloud 8

378759923386821

Credits

Sian Jones

07710783784

sian@credits.vision

Support

Support
Name Content
Support service type
  • Service desk
  • Email
  • Phone
  • Onsite
Support accessible to any third-party suppliers Yes
Support availability Standard: 9 to 5, Mondays to Fridays excluding public holidays. Extended support availability by negotiation.
Standard support response times From 1 hour depending on service level, priority, severity and impact of the incident or request
Incident escalation process available Yes

Open standards

Open standards
Name Content
Open standards supported and documented No

Onboarding and offboarding

Onboarding and offboarding
Name Content
Service onboarding process included Yes
Service offboarding process included Yes

Analytics

Analytics
Name Content
Real-time management information available Yes

Cloud features

Cloud features
Name Content
Elastic cloud approach supported No
Guaranteed resources defined Yes
Persistent storage supported No

Provisioning

Provisioning
Name Content
Self-service provisioning supported Yes
Service provisioning time 15 minutes
Service deprovisioning time Less than a minute

Open source

Open source
Name Content
Open-source software used and supported Yes

API access

API access
Name Content
API access available and supported Yes
API type RESTful

Networks and connectivity

Networks and connectivity
Name Content
Networks the service is directly connected to
  • Internet
  • Public Services Network (PSN)
  • Police National Network (PNN)
  • New NHS Network (N3)
  • Joint Academic Network (JANET)

Access

Access
Name Content
Supported web browsers
  • Internet Explorer 8
  • Internet Explorer 9
  • Internet Explorer 10+
  • Microsoft Edge
  • Firefox
  • Chrome
  • Safari
  • Opera
Offline working and syncing supported No
Supported devices
  • PC
  • Mac
  • Smartphone
  • Tablet

Data storage

Data storage
Name Content
Datacentres adhere to the EU code of conduct for energy-efficient datacentres Yes
User-defined data location Yes
Datacentre tier TIA-942 Tier 3
Backup, disaster recovery and resilience plan in place Yes
Data extraction/removal plan in place Yes

Data-in-transit protection

Data-in-transit protection
Name Content
Data protection between user device and service TLS (HTTPS or VPN) version 1.2 or later
Data protection within service TLS (HTTPS or VPN) version 1.2 or later
Data protection between services
  • CPA Foundation VPN Gateway
  • TLS (HTTPS or VPN) version 1.2 or later

Asset protection and resilience

Asset protection and resilience
Name Content
Datacentre location UK
Data management location
  • UK
  • Other countries with data protection treaties
Legal jurisdiction of service provider Other countries with data protection treaties
Datacentre protection Yes
Data-at-rest protection
  • CPA Foundation-grade assured components
  • Physical access control
Secure data deletion CPA Foundation-grade erasure product
Storage media disposal CESG-assured destruction service (CAS(T))
Secure equipment disposal Yes
Redundant equipment accounts revoked Yes
Service availability 99.5

Separation between consumers

Separation between consumers
Name Content
Cloud deployment model Public cloud
Type of consumer Only government consumers
Services separation Yes
Services management separation Yes

Governance

Governance
Name Content
Governance framework No

Configuration and change management

Configuration and change management
Name Content
Configuration and change management tracking Yes
Change impact assessment No

Vulnerability management

Vulnerability management
Name Content
Vulnerability assessment No
Vulnerability monitoring Yes
Vulnerability mitigation prioritisation Yes
Vulnerability tracking No
Vulnerability mitigation timescales No

Event monitoring

Event monitoring
Name Content
Event monitoring Yes

Incident management

Incident management
Name Content
Incident management processes No
Consumer reporting of security incidents No
Security incident definition published No

Personnel security

Personnel security
Name Content
Personnel security checks Employment checks

Secure development

Secure development
Name Content
Secure development Yes
Secure design, coding, testing and deployment Yes
Software configuration management Yes

Supply-chain security

Supply-chain security
Name Content
Visibility of data shared with third-party suppliers Yes
Third-party supplier security requirements No
Third-party supplier risk assessment No
Third-party supplier compliance monitoring No
Hardware and software verification Yes

Authentication of consumers

Authentication of consumers
Name Content
User authentication and access management Yes
User access control through support channels Yes

Separation and access control within management interfaces

Separation and access control within management interfaces
Name Content
User access control within management interfaces Yes
Administrator permissions No
Management interface protection No

Identity and authentication

Identity and authentication
Name Content
Identity and authentication controls Username and password

External interface protection

External interface protection
Name Content
Onboarding guidance provided No
Interconnection method provided Internet

Secure service administration

Secure service administration
Name Content
Service management model Dedicated devices for community service management

Audit information provision to consumers

Audit information provision to consumers
Name Content
Audit information provided Data made available by negotiation

Secure use of the service by the customer

Secure use of the service by the customer
Name Content
Device access method
  • Corporate/enterprise devices
  • Partner devices
  • Unknown devices
Service configuration guidance No
Training Yes
Return to top ↑