Security & Access Control
Zero Trust posture, RBAC, audit trail, SOC stream and DPDP 2023 compliance evidence. All controls audited weekly; CERT-In empanelled VAPT closed Year-1.
SOC Status
24×7
L1/L2/L3 staffed · MTTD 4 min
Critical CVEs
0
Trivy + ZAP nightly · last 03:00
Active Sessions
84
Across 6 roles
VAPT Year-1
Complete
CERT-In empanelled auditor
DPDP 2023
Full
12/12 controls evidenced
TLS
1.3
Enforced · HSTS 1y preload
Zero Trust Architecture
10-pillar control surface
Never trust, always verify · click any tile for detail
RBAC — Role Editor
6 roles · click row to manage permissions
| Role | Count | Scope | Permissions |
|---|
Encryption Standards
In-transit · at-rest · key custody
In-transit
TLS 1.3 (min)
At-rest
AES-256-GCM
Aadhaar
HMAC-SHA256
Keys
HSM / Vault
Certs
RSA-2048 · SHA-256
Rotation
90 days · auto
Audit Trail
Audit Log Viewer
Tamper-evident · streamed to NIC SOC · 60 most-recent events
| Timestamp | User | Action | Category | IP | Result |
|---|
SOC Live Stream (Wazuh)
SIEM rules · auto-refresh 12s
DPDP 2023 Compliance
12 mandatory controls · evidence linked
Active Sessions
Sessions in flight
Keycloak SSO · 30-minute idle timeout · re-MFA on privilege escalation