SID-TRANS-01 — TLS 1.2+ Minimum with Configurable Version
| Property | Value |
|---|---|
| Status | verified |
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | Transport Security Controls |
Description
TLS minimum version configurable (default 1.2, option for 1.3). Applied to all server listeners. CORS middleware with origin allowlisting and wildcard rejection when credentials enabled.
Components
- Wallet Backend (Go)
- Reverse Proxy / TLS
Source References
Audit Findings
| Finding | Severity | Status |
|---|---|---|
| EN-S-5 — Partial transport and instance protection | medium | in progress |
| ISO-T-8 — Partial network security | medium | open |