Saturn Security Keeping Saturn safe and secure.

Introducing the Saturn Security System.

Saturn Security System is a set of advanced algorithms designed to detect and prevent malicious activity, from code injection to login attempts, Saturn Security System watches them all. Saturn's processes and every Saturn plugin use the Saturn Security System to ensure that your Saturn website is protected from hackers and malicious code. By using advanced hashing algorithms and IP-based location detection technology, Saturn ensures that user accounts won't be compromised. For more information about these systems, check out the section below.

Saturn Security System can be managed easily and quickly from the Admin Panel, the website administrators can change how the Saturn Security System works including what it should look for, and what it should do when it detects potential malicious activity. Saturn Security System keeps records of every action taken on your website, every action taken on your website is logged and visible in the Saturn Security System so you can see exactly who did what and when they did it.

If you discover a Security Vulnerability, please let us know immediately by clicking here.

Keeping your account secure.

When you register for an account on a Saturn website, you can rest assured that your account and personal information is in safe hands. We've implemented the following measures to ensure that your account is secure and only accessible by you.

  • 1

    Database Hashing

    We use Salted BCrypt to securely encrypt your passwords, so that nobody can tell what they are. We also use SHA3-512 hashing for your User Key and IP address, to make sure that stays in your eyes only.

  • 2

    User Key Authentication

    Every time you login, your User Key is used to make sure that it's really you trying to access Saturn, this key changes every time you login so if a hacker tries to use the same key you just used, they're locked out!

  • 3

    Location Based Verification

    If a malicious third party somehow gets your password and attempts to login from a remote location, they can't gain access unless you approve the login via an email you'll get sent.

  • 4

    Two-Factor Authentication

    If you'd like an extra layer of security you can enable 2FA in your user settings, requiring a unique code whenever you log into your account regardless of your location.

Hashing and Encryption

Saturn's Saturn Security System uses industry-leading Hashing and Encryption algorithms and technologies. We store all our user passwords using Salted BCrypt hashes. Salting allows us to make your passwords even more secure, if two users have the exact same password the encrypted hash that appears in the database will be completely different thanks to our Salts.

We also use Secure Hash Algorithm 3 (With a length of 512!) hashing on your IPs and User Keys. As well as using these hashing standards ourselves, we also provide Saturn plugin and theme developers with libraries to use our recommended hashing standards. If a newer and more secure hash becomes ready for us to use, you won't need to wait for your plugin developers to update as the second we do, they automatically move to the new system too.

Keeping your website secure.

The Saturn Saturn Security System doesn't just keep your accounts secure, it keeps your website secure too. We have advanced algorithms and processes to watch over your data and make sure that nobody has tampered with it.

  • 1

    Code Injection Prevention

    Code Injection is responsible for hundreds of data breaches, that isn't good! Saturn uses sophisticated techniques to prevent hackers from being able to inject malicious code into your website, keeping your data safe and your website how you made it.

  • 2

    Core Checksum Verification

    Some files such as the website configuration contain sensitive settings that can alter how Saturn works. CCV checks that nobody has messed with these vital files by creating and checking checksums of these files regularly.

  • 3

    HTTPS

    Saturn supports the use of HTTPS, it's enabled by default and will automatically redirect users to a secure connection of your website. You'll need to enable HTTPS with your hosting provider for this feature to work correctly.