Technical Specifications
Documentation on environment authentication, SSL protocols, and authorized domain identification using DNS authority records for librabet-compliance.site.
Environment Authentication
All nodes within the Libra Systems infrastructure require mutual TLS (mTLS) for environment authentication. This ensures that only authorized nodes can communicate within the identity hub.
SSL/TLS Protocols
The gateway domain librabet-compliance.site enforces the following SSL/TLS standards:
- Minimum Protocol: TLS 1.3
- Cipher Suites: ECDHE-RSA-AES256-GCM-SHA384, ECDHE-ECDSA-AES256-GCM-SHA384
- Certificate Authority: Enterprise-grade Root CA
DNS Authority Records
Domain identification and authority are managed through specific DNS records. Below is the sample zone text block for DMARC configuration.
Sample Zone Text Block
_dmarc.librabet-compliance.site. IN TXT "v=DMARC1; p=reject; rua=mailto:tech@librabet-compliance.site; ruf=mailto:tech@librabet-compliance.site; fo=1; adkim=s; aspf=s"Authorized Domain Identification
To verify the authenticity of a node, administrators must check the DNS TXT records for the domain. The following table provides the expected values for the librabet-compliance.site gateway.
| Record Type | Host | Expected Value |
|---|---|---|
| TXT | @ | v=spf1 include:_spf.librabet-compliance.site ~all |
| TXT | _identity | node-id: LS-HUB-042; auth: enterprise-v3 |
| CNAME | verify | identity.librabet.com |