Confidentiality ensures only authorized users see stored and transmitted information. In addition to the documentation included with other applications and hardware components, follow the P6 EPPM-specific guidance below.
- For data in transit, use SSL/TLS to protect network connections among modules. If you use LDAP or SSO authentication, ensure you use LDAPS to connect to the directory server.
- For data in transit, disable http listener on your application server or fronting web server, only allow https connections from browsers.
- For data at rest, refer to the documentation included with the database server for instructions on securing the database.