Part of the goal is to run this as a service, but AS3 declarations can include sensitive information, so protecting data transfer to/from this service is important.
Standard security practices push for TLS encryption of all data in transit
Need to enable TLS encryption at the node level
The thought is to allow some config pointer flags to pick up certs at instantiation (which would included fetching from Hashi-Vault). If certs are not found, then it could self-generate
Part of the goal is to run this as a service, but AS3 declarations can include sensitive information, so protecting data transfer to/from this service is important.
Standard security practices push for TLS encryption of all data in transit
Need to enable TLS encryption at the node level
The thought is to allow some config pointer flags to pick up certs at instantiation (which would included fetching from Hashi-Vault). If certs are not found, then it could self-generate