Inhaltsverzeichnis
4.1 Security Architecture
Overview of PQ security components.
System Overview
Internet / Intranet
|
[Firewall :443]
|
+--------------------------------------------------+
| PROXY (:443) |
| - TLS 1.3 Termination |
| - Client Certificate Verification |
| - Routing Decision |
+--------------------------------------------------+
| |
[Named Pipe] [TCP :8443]
| |
+---------------------+ +---------------------+
| Data Gateway | | IIS |
| (API Endpoint) | | (other services) |
+---------------------+ +---------------------+
Components
| Component | Function | Documentation |
|---|---|---|
| Proxy | TLS termination, routing | Proxy Configuration |
| Named Pipe | Secure local communication | Named Pipes |
| Gateway | API processing | Configuration |
| IIS | Fallback for other requests | IIS Redirection |
| Trust Server | Certificate validation | Trust Server |
Zero Trust Principles
- Never trust implicitly
- Always verify
- Minimal privileges
- Segmentation
Regulatory Background
Zuletzt geändert: on 2026/01/29 at 11:21 PM
