Security considerations
Sensitive Administration Tasks
Some of the tasks below are very security sensitive and may compromise the infrastructure if they are not carefully executed.
These tasks include:
- Any certificate handling where a private key is involved as well as the protection of private keys with passwords. Installation of CA certificates for node, user or SecToken verification is also sensitive as the installation procedure is equal to granting authorization.
- The communication infrastructure to nevis-Auth and content providers should be protected on the network layer (e.g., by using TLS-enabled transport protocols). User credentials and SecToken information should not be visible on the network.