-
Notifications
You must be signed in to change notification settings - Fork 12
Security Features
Don Mendelson edited this page Sep 4, 2018
·
1 revision
Project Conga implementation is intended to conform to the FIX-over-TLS (FIXS) recommendations of the FIX Cybersecurity Working Group.
In the initial implementation, the server is authenticated by a certificate. For demonstration purposes, it is self-signed, but of course, a production system should use one issued by a certificate authority.
With just configuration changes, it would be possible to use mutual authentication with a certificate on the client side.
Cipher suites are negotiated between client and server as specified by the TLS protocol. See the FIX-over-TLS document for recommended cipher suites.