- Use TLS β Always deploy behind TLS termination
- Rate limit β Add rate limiting at load balancer
- Monitor β Alert on unusual handshake failure rates
- Rotate keys β Periodic key rotation limits compromise blast radius
- Audit policies β Regularly review authorization rules
- Encrypt content β Use application-layer encryption for sensitive data
- Validate policy β Test authorization edge cases
- Handle errors β Don't leak information in error messages
- Log security events β Track failed auth attempts
See design/ for protocol documentation, security rationale, and threat model.