Securing communications and data
Securing your environment, especially in production mode, is a major aspect of setting up your IBM® Business Automation Insights system.
About this task
- Flink cluster
- Data stored on the Flink persistent volume (PV) is encrypted.
- Elasticsearch
- Data stored on the Elasticsearch volume or on HDFS is not encrypted. However, you might want to enable encryption on your disks or to anonymize some data on HDFS. For more information about anonymization, see Protecting HDFS data.
- IBM Cloud Private cluster
- By default, encryption is disabled. To activate it, enable IPSec on your cluster with your own certificate for intranode communication. For more information, see Encrypting cluster data network traffic with IPsec.
- Event emitters
- You must also secure communications from event emitters to Kafka. For more information, see Securing communications from event emitters to Kafka.