With the Impala Data Reader, all data is encrypted at rest and during transport through internal Impala services.
We additionally guard against SSL certificate mis-issuance, DNS spoofing, and domain takeover attacks, using a private Impala Certificate Authority (CA) and restricting the Data Reader to only trust our private CA. Even if the local hotel network is compromised and the DNS poisoned to redirect traffic to a host with a certificate trusted by the Public Key Infrastructure (PKI), the Impala Data Reader will not transmit data to it.
We've modelled our service around the principles of data sparsity, so we'll only cache and deliver the precise data points you require. At Impala, we believe that every software we connect should have exposure to the minimum required data points to function.
Additionally, the Impala Data Reader can run as an unprivileged user and with restricted permissions to the target data source, providing a defence in depth solution. Contrary to the majority of PMS integrations this makes Impala easy to use, low cost, and straightforward to implement, whilst giving you access to a wide range of PMS integrations.