Security Architecture

Security is built into XLServer at every level.

1. Access Control

• Role-Based Access Control (RBAC).
• Project-based isolation: users see only resources of their projects.

2. Data Encryption

• At Rest – ZFS native encryption.
• In Transit – TLS/HTTPS for UI & API, SSH for CLI.

3. Data Masking

• Preconfigured templates for common sensitive fields.
• Applied during clone creation to ensure compliance (GDPR, HIPAA, etc.).

4. Integrity

• ZFS checksums detect corruption.
• Automatic self-healing on redundant pools.

5. Audit Logging

• All actions logged with timestamps and user IDs.
• Logs can be shipped to SIEM tools.

---