Security

Usage Engine is built with a strong focus on security and has a password policy that conforms to NIST 800-63B. It provides the following security features: 

• Token based authentication. 
• Role base access control. 
• OIDC Identity Provider. 
• Encryption at rest – using tools to encrypt the data before writing it to storage.  
• Encryption at transit – Using TLS encryption (note – a few agents/protocols still do not provide TLS. If encryption at transit is needed for such features, it must be enabled in the networking layer). 
• Immutable images, scanned with image scanners for CVEs. 
• Automated certificate management, using the cert-manager tool to integrate with CA.