Security Considerations

This section covers Replicante security design and features.

Replicante aims to provide a reasonable level of security by default. Tuning will be required to ensure users make the best of the offered features.

Design expectations

Replicante is developed with some expectation about data, users, and runtime environment:

  • Agents can be trusted and respect the specification.
  • Users that have access to the system can be trusted.
  • Replicante processes can trust each other.
  • Agent actions can be harmful so the authenticity and integrity of action requests MUST be guaranteed.
  • Collected data and generated events are sensitive information (precautions are taken to avoid unauthorised reads) but are not confidential (no permanent or irreparable harm is done if data is leaked).
  • Security of third party software (store, message bus, …) is out of scope.

Features

Replicante provides the following security-related features: