Conversation
Fdeutekom
reviewed
Mar 26, 2026
Co-authored-by: Fdeutekom <floris.deutekom@enable-u.com>
Fdeutekom
reviewed
Mar 26, 2026
Fdeutekom
reviewed
Mar 26, 2026
Fdeutekom
reviewed
Mar 26, 2026
Fdeutekom
reviewed
Mar 26, 2026
Attempt to center text
Fdeutekom
reviewed
Mar 26, 2026
Final edit
Collaborator
Author
|
@hhudig kan jij kijken of mijn plaatje lijkt op wat jij bedoelde met het gartner plaatje? |
underdarknl
reviewed
Apr 16, 2026
|
|
||
| #### HTTPS (TLS) configuration | ||
|
|
||
| When a client communicates with a REST API, the connection itself must be protected. **HTTPS** provides this by encrypting all traffic between client and server using **PKI certificates**. These certificates, issued by trusted authorities, verify the server’s identity and ensure that data cannot be intercepted or modified in transit. By enforcing HTTPS, APIs provide a baseline for both **confidentiality** and **integrity** of network communications, forming the foundation of secure runtime interactions. |
There was a problem hiding this comment.
PKI is niet exact hier. Zeker binnen eigen netwerken kan de 'P' hier onuist zijn, precieser zou zijn dat het om X509 certificates gaat, waarbij (inderdaad zoals beschreven) de validity onderschreven is door een trusted authority (maar dat kan ook een eigen signer zijn).
There was a problem hiding this comment.
In allerlei situaties kan natuurlijk ook de client op die manier geverifieerd worden dmv Mtls.
There was a problem hiding this comment.
'One must follow the latest NCSC guidelines for TLS' also is not 100% correct. Various ministries are more strict for their services (based on context).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
oplossing issue 670