Security
Excalibur provides comprehensive security features for enterprise applications, including encryption, audit logging, and compliance support.
Before You Start
- .NET 8.0+ (or .NET 9/10 for latest features)
- Install the required packages:
dotnet add package Excalibur.Dispatch
dotnet add package Excalibur.Dispatch.Security # encryption, signing, input validation - Familiarity with middleware and pipeline concepts
Security Topics
| Topic | Description |
|---|---|
| Encryption Architecture | AES-256-GCM encryption, key management, cloud KMS integration |
| Audit Logging | Tamper-evident audit trails with hash chain integrity |
| Threat Model Baseline | Release-blocking threat categories and governance expectations |
Quick Links
Encryption
- AES-256-GCM Provider - Technical specifications and usage
- Key Management - Key lifecycle and rotation
- Cloud KMS Providers - Azure Key Vault, AWS KMS, HashiCorp Vault
- Message Encryption - Pipeline middleware
- Store Decorators - Transparent persistence encryption
- FIPS 140-2 - Federal compliance
Compliance
- Compliance Overview - FedRAMP, GDPR, SOC 2, HIPAA
- Quick Start Guide - 30-minute implementation guide
Related Documentation
- Advanced Security - Detailed security guide
- Compliance - Regulatory compliance checklists
See Also
- Encryption Providers — Available encryption providers including AES-GCM, Azure Key Vault, AWS KMS, and HashiCorp Vault
- Authorization & Audit (A3) — Activity-based authorization, token validation, grants, and audit events
- Audit Logging — Hash-chained audit trails, SIEM integration, and compliance mapping
- Threat Model Baseline — Supply-chain, integrity, privilege, and availability threat baseline
- Compliance Overview — FedRAMP, GDPR, SOC 2, and HIPAA compliance checklists and guides