We’re proud to announce our PCI DSS SAQ D compliance checks have been completed and accepted as of today.

Our product has been PCI compliant since entering the market. But this official certification cements the trust our customers put in us. With c/side you can achieve compliance with PCI DSS requirements 6.4.3 and 11.6.1.

Find our trust page here.

Today we're proud to announce we've made c/side available on the AWS marketplace. This allows c/side to be implemented quickly and the ability to streamline the purchase and management solution within our customers’ AWS Marketplace account.

Find c/side on AWS

We're excited to announce that c/side enterprise now supports Okta SSO.

Any enterprise customer can simply follow the guide in our documentation to setup their environment.

As part of PCI DSS v4.0.1 reporting of script changes, security header changes and business and technical justifications must be kept on record and reported on at least weekly. C/side enterprise customers who opted into the PCI DSS dashboard now automatically receive a report weekly each Monday.

The report includes the scripts present on the webpage and their business justification as well as the security header changes of the past week. Each member of the c/side team will receive the report.

The report is also available for download in the PCI DSS dashboard.

Our PCI DSS dashboard is now fully released to all enterprise customers. The update introduces a number of new features making PCI DSS 4.0.1 (requirements 6.4.3 and 11.6.1) compliance easier than ever.

Manage and track scripts on payment pages as required by PCI DSS, and across the entire website. Our customers now have a full overview and history of Content Security Policy (CSP) headers, flagging and blocking malicious changes.

Other notable changes include:

AI script justification:
The PCI DSS guidelines requires a detailed justification report on all scripts present on the payment pages. Our AI now drafts the justification for you. Simply edit or confirm the AI output.

Script search bar:
The search bar now searches across all scripts in real-time, not only those previously fetched, this to give a more complete and correct overview.

Timeframe changes:
The sample range set now reflects the script graph and the script table at once. This provides a better understanding and quick overview of the scripts requests.

Time handling:
Upon hovering over a specific script, it now shows the request timing info in the local time, UTC and the relative time passed since the request.

The script detail page, domain page and team sidebar all received a significant UI update.

We were running out of space. With some more custom views and new products coming our way we needed to create a bigger playing field, so we're introducing a new dashboard layout.

The c/side sidebar houses a new range of views and easier access to features you need more regularly.

We're now offering a live view of scripts passing through our proxy. With this view its easier to track live activity on your website.

In case scripts start misbehaving over time or you wish to pin to a static version of a script, you can now pin to a specific hash.

c/side now supports MFA natively for all plans.
Our MFA support authenticator apps but also supports hardware tokens.

Use your Yubikey or Apple Touch ID on c/side!

Identity and access management shouldn't suck. So we invested the extra effort to make it work for you. You see active sessions of your account and can log-out previous sessions from our dashboard. We also notify you of new log-in attempts.

We’re excited to announce the launch of c/side. Monitoring, Securing and Optimizing 3rd Party Scripts. In today's digital landscape, third-party scripts are a key part of the supply chain. Yet it is often forgotten about and therefore presents a threat. Browser Supply Chain Risks are an age old and continuing issue. C/side addresses these challenges head-on, providing insight into the script payloads delivered and active protection against JavaScript-based attacks, without impacting performance. In fact, often optimizing script performance by up-to 20%.

Why c/side?

1. Comprehensive Monitoring:
   • Track every script request in real time.
   • Detect vulnerable resources and suspicious behaviors.
   • Receive alerts when something goes wrong.
2. Enhanced Security:
   • Autonomous blocking of malicious scripts.
   • Offering a vast range of autonomous detection mechanisms using AI.
3. Performance Optimization:
   • Improve script performance by up to 20%.
   • Get a faster and more secure website loading.
4. User-Friendly Implementation:
   • Easy integration with minimal changes to existing workflows.
   • Simply install our package or inject our script to get started.

Get started today

Experience the benefits of c/side with our free tier BETA, which offers our proxy security services, script monitoring, and notifications.

For web development agencies, security consultancies, and managed service providers, our partner tier will soon be available, designed to manage multiple sites efficiently. Contact us for more information.

Stay ahead of threats and enhance your website's performance with c/side. For more information and to get started, visit cside.dev or contact us.