Security Model
Authentication, authorization, and data protection in the monitoring platform
Overview
The Cyviz monitoring platform implements a multi-layered security model designed to protect sensitive monitoring data across distributed deployments. This document covers the key security mechanisms in place.
Authentication
Content to be added: OAuth 2.0 / OIDC flows, API key management, agent authentication via mTLS, session management.
Authorization
Content to be added: Role-based access control (RBAC), tenant-level permissions, namespace scoping, API authorization.
Data Protection
Content to be added: Encryption at rest and in transit, data retention policies, PII handling, audit logging.
Network Security
Content to be added: TLS requirements, firewall rules, agent-to-cloud communication security, VPN considerations.
Compliance
Content to be added: GDPR considerations, SOC 2 alignment, data residency options, security certifications.