Security
Authorization & authentication
The details of how we deal with authorization and authorization can be found in the according concept page of Multitenant Access Control.
Encryption
The Smart Operations Toolkit requires Transport Layer Security (TLS) encryption via Secure Socket Layer (SSL) in all communication channels (e.g. HTTPS, AMQPS, MQTTS, …). Make sure your application is capable of handling server (and in some cases client) side certificates. Additionally, we use encryption when storing application secrets in vaults or encrypted configuration files.