The access to the service is based on OAUTH2 Client Credentials using Client ID and Secret to retrieve a Bearer Token.
The service adheres to SWIM YP, WS Light implementation, therefore the payload is protected during transfer and all data is protected at rest