The service ensures that satisfactory authorisation is put in place according to EUROCONTROL Specification for SWIM Technical Infrastructure (TI) Yellow Profile requirement SWIM-TIYP-0070.
SECURITY_CONSTRAINT
The service ensures client authentication in accordance with SWIM Technical Infrastructure (TI) Yellow Profile 2.0 requirement SWIM-TIYP-0042 by implementing username and password authentication using HTTP Authorization headers with Basic scheme for HTTPS based interfaces, and using SASL PLAIN for AMQP. !!MTLS-STATEMENT-OPTIONAL. The service ensures server authentication in accordance with SWIM-TIYP-0042.</p>
Communication integrity is ensured by TLS encryption.
Communications (HTTPS and AMQPS) are secured using TLS
The authentication is based on mutual TLS and requires all users to request using an X.509 certificate. The service support TLS 1.3
All connections to the service require mutual authentication through a client digital certificate issued by AirNav Ireland. Interested organisations must formally request the issuance of this certificate from AirNav Ireland prior to being granted access.
The requested information may contain a digital signature using SHA-256 or stronger.
Communication is encrypted per SWIM TI Yellow Profile.
Access is limited by policy to users within the Aviation domain. Authentication is managed using SASL PLAIN for AMQP, and API keys for EDR API. In the future authentication and authorization via EACP issued Aviation Domain Certificate may be required to use the services.
The requested information may contain a digital signature using SHA-256 or stronger.