Do all ports absolutely require in/out privileges? If not, which ports require inbound, which ones require outbound?
Only outbound access is required. Devices no longer require inbound access.
We would prefer to only lift the inbound/outbound restrictions on ports 22, 443, 5671. Can you explain why we would need to use 21, 80, 8080?
As it turns out, 21 and 8080 are no longer necessary. Outbound traffic on port 443 for HTTPS is required.
Port 80 (used for HTTP calls) doesn’t require inbound access, but if you plan on displaying content from a website (using the webpage app), you would need to allow outbound access.
Will this device only be communicating only with Enplug’s servers?
The device does communicate with third-party services. For example, for social media, the devices connects directly with Instagram and Twitter’s API. For the webpage app, the device will need to fetch data from the website via HTTP. Devices also rely on Amazon AWS-SQS to receive commands and messages.
How are the devices protected? What security measures are put in place?
Communication between Enplug and a device is protected using secure, token-based authentication. Your data is protected with SSL encryption using servers hosted at a state-of-the-art SSAE-16 certified, Sarbanes-Oxley (SOX) compliant data center.
Does the device come installed with virus protection, and if so, how often is it updated?
The device doesn’t come installed with any kind of virus protection, but rest assured that we don’t install any untrusted third-party software and strip the Android OS down to the bare minimum that is required to run our player software.
Are the devices are IPV4 and IPV6 compatible?
The devices are IPV4-compatible, but not compatible with IPV6.