An external attack is when an attempt is made to gain access or compromise the operation of the system without having OS access to the system. To protect against such eventuality Protector employs the following:
- Secure node to node communication - Communication between nodes is performed through a private protocol on a fix network port. Protector uses TLS connection between nodes on that port and utilises digital signatures that were generated during installation time for node identity verification.
- Secure REST API - All user requests are performed through the Role Based Access Control (RBAC) secured REST API to the Master Node. Making any changes to the configuration requires credentials and permissions at the right levels, no mater whether accessed via GUI or API.
- There is no concept of a default user or password. The initial user and all subsequent users must be specifically defined.
- Regular update of internal libraries to be update to date with the latestinformation from National Vulnerability Database (NVD).