FT-I-2 — Biometric data in PostgreSQL accessible without encryption at rest
Component: Biometric Verification. Mitigations: At-rest encryption is operator responsibility. Action: Require PostgreSQL encryption at rest as deployment prerequisite
| Property | Value |
|---|---|
| Section | Information Disclosure |
| Owner | operator |
Mapped Controls
| Control | Title |
|---|---|
| SID-DATA-01 | SD-JWT Selective Disclosure |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md