Developer Portal security configuration
Securing communication in Developer Portal is critical for protecting the data from unauthorized access. Developer Portal employs encryption protocols to safeguard data against interception, tampering and other security threats. This approach enhances data confidentiality, integrity and compliance with security standards and guidelines. Developer Portal addresses data security across different states of transmission and storage.
- Securing data in motion
- Data in motion refers to information exchanged between the Developer Portal and the other
associated components. Developer Portal, as a client, communicates with OpenSearch database, webMethods API Gateway and Federated API Management assuming them as the servers. You can secure their communication by using two-way Secure Sockets Layer (SSL). The following sections explain how to enable SSL between Developer Portal and the other components:
- Developer Portal and OpenSearch. Securing Developer Portal and OpenSearch communication.
- Developer Portal Ignite clusters. Securing communication between Developer Portal nodes in a cluster.
- Developer Portal and webMethods API Gateway. Securing Developer Portal and webMethods API Gateway communication.
- Developer Portal and Federated API Management. Securing Developer Portal and Federated API Management communication.
- Securing data at rest
- Data at rest refers to information that is stored in a disk, file system or other persistent storage mechanisms. It includes installation, configuration, core and analytics data. In addition to having all data in motion be encrypted, you can ensure that the data at rest is also encrypted.