Security
Jan 1 2022 at 12:00 AM
The Edge Raptor™ contains various security components. The purpose of this document is to highlight important security components and to act as an entry point for a security discussion at a later stage. The components will be discussed in more detail in the following subsections.
Note: This article applies to deployments managed by IoT.nxt®. Self-hosted solutions may differ.
Edge Raptor Login
The Edge Raptor login makes use of the Commander™ as an authentication provider. For an overview of this component, please visit the Commander Authentication article.
Edge Raptor Security
The Raptor edge gateways are built on Ubuntu Core. Ubuntu Core offers a number of security advantages. Once of the advantages is that a root of trust has been defined and is managed by the Ubuntu Core system. A writeup on the security features provided by Ubuntu Core can be found here.
Additional security features:
- Raptor implements TLS encryption for data in transit (transmission)
- Encryption of data at rest (storage) and service to service communication encryption
- Multi-level password authentication
- Code Obfuscation
- IP Whitelisting functionality
- Minimum attack surface
- Detailed audit logs
- Changelog management
- Dynamic certificate generation
- HSTS
- Service to service communication encryption