Report:_FP_Requirements#6 Data in motion should be encryptable by configuration in a particular network instance.
- Client to Network API: Use https transport of xml documents.
- Client to Network API: Use xml encryption library for xml documents.
- Network node to Network node communication: ?? https? ssh?
When configured for encryption, a FilteredPush network instance must encrypt all traffic between clients and network access points and all traffic between network nodes.
When not configured for encryption, a FilteredPush network instance does not enforce encryption of data in motion (but may enforce digital signatures on messages).
SCAN TCN Network does not need to be configured for encryption of all data in motion.
NEVP TCN Network does require encryption of all data in motion.