Usage Engine is built with a strong focus on security and has a password policy that conforms to NIST 800-63B. It provides the following security features: 

  • Token based authentication. 
  • Role base access control. 
  • OIDC Identity Provider. 
  • Encryption at rest – using tools to encrypt the data before writing it to storage.  
  • Encryption at transit – Using TLS encryption (note – a few agents/protocols still do not provide TLS. If encryption at transit is needed for such features, it must be enabled in the networking layer). 
  • Immutable images, scanned with image scanners for CVEs. 
  • Automated certificate management, using the cert-manager tool to integrate with CA.