Encryption
Configuration
Sensitive configuration data, such as passwords, are encrypted using AES128.
Keystores
HSM
PKI keystores, used to encrypt and sign, can be stored in a HSM module.
More details on how to configure HSM can be found in this section.
Communication
Inbound and outbound communication should always be encrypted. Clavister PAS platform supports encrypted communication.
Some examples:
HTTPS (SSL)
LDAPS