Our security folks are asking me what Apigee Edge cloud is encrypting at rest, especially clientids and client secrets. Is there a document that describes what you're doing?
It is more important that the communication is via HTTP(s), else even if the clientId/secret is encrypted they can be comprised / re-used.
User | Count |
---|---|
1 | |
1 | |
1 | |
1 | |
1 |