Security of Monitoring Data

TIBCO FTL components and clients can secure monitoring data using TLS.

If your enterprise uses secure realm servers, then monitoring data is secure as it travels from client to realm server, and then to subscribers.

However, TIBCO makes no assertions about the security of third-party components, such as Prometheus or Grafana.

Realm Server

A secure realm server uses a secure TCP transport to communicate with its clients. TLS secures the heartbeat messages that carry monitoring data from clients to the realm server.

A secure realm server can secure the monitoring message stream using TLS.

See "Secure Realm Servers" in TIBCO FTL Administration.

Adapter

The adapter (tibpromgateway) supports JAAS and TLS to secure its client connection to a secure realm server. Administrators must supply appropriate command line arguments when starting the adapter.

Prometheus

The data paths that link the tibpromgateway adapter, Pushgateway, the Prometheus server, and Grafana are not secure.

Contents

Index

Search Results

Security of Monitoring Data

Realm Server

Adapter

Prometheus