Security

Security is architectural, but deployment security remains a shared operational responsibility.

PowerVest uses an AES-256-based layered design rather than a single-key model.

Application protocol and authorization

• Structured backend operations travel through a defined client-server protocol rather than exposed administrative interfaces.
• Client identity, authorization and permitted operation types are enforced before backend work executes.
• Protocol compatibility is managed through version planning between server and integrated clients.

Protection layers

• Server-side master protection
• Client-specific protection
• Per-communication variation
• Encrypted database support (SQLite Encryption Extension)
• Encrypted server-side file storage
• Controlled authorization and operation types

Deployment responsibilities

Customers remain responsible for OS hardening, firewall rules, key management, administrator access, backup and restore testing, storage policy, logging, monitoring, incident response and version compatibility.