Share via


App Security Requirements

All client applications and integrations that use the legacy Viva Engage (Yammer) Platform must adhere to the following security requirements and recommendations.

Required

  1. Encryption in Transit and at Rest:
    Yammer authorization tokens and personally identifiable information (PII) must be encrypted both in transit and at rest.
  2. Access Control:
    Implement access controls on data storage if customer information is retained.
  3. SSL Redirect URI:
    All redirect URIs must use SSL (HTTPS).
  1. Regular Security Testing:
    Conduct security testing on your environment at a regular cadence.
  2. Intrusion Detection System (IDS):
    Implement an Intrusion Detection System to monitor and protect your environment.
  3. Event Logging:
    Maintain adequate logging of security-related events.