|
<< Click to Display Table of Contents >> Raynet One Data Hub > 2026.2 > Software Bill of Materials Security Summary |
This section provides an overview of security-relevant components and risk categories in Raynet One Data Hub. All components undergo regular security updates as part of Raynet's security maintenance program.
Component |
Version |
Risk Level |
Purpose |
|---|---|---|---|
System.IdentityModel.Tokens.Jwt |
8.6.1 |
CRITICAL |
JWT token processing |
Microsoft.AspNetCore.Authentication.JwtBearer |
8.0.6 |
CRITICAL |
Authentication security |
Azure.Identity |
1.13.2 |
CRITICAL |
Azure cloud authentication |
Google.Apis.Auth |
1.69.0 |
CRITICAL |
Google Cloud authentication |
BouncyCastle.Cryptography |
2.3.1 |
CRITICAL |
Cryptography library |
BCrypt.Net-Core |
1.6.0 |
CRITICAL |
Password hashing |
Newtonsoft.Json |
13.0.3 |
HIGH |
JSON deserialization |
Microsoft.EntityFrameworkCore |
8.0.6 |
HIGH |
Database access & SQL injection protection |
OpenAI |
2.0.0 |
HIGH |
OpenAI API integration (data transfer) |
Component |
Version |
Risk Level |
Purpose |
|---|---|---|---|
jquery |
3.7.1 |
HIGH |
DOM manipulation (XSS vulnerabilities) |
crypto-js |
4.2.0 |
HIGH |
Client-side cryptography |
@nebular/auth |
14.0.1 |
HIGH |
Authentication handling |
xlsx |
0.18.5 |
Medium |
Excel file parsing |
devexpress-richedit |
24.1.7 |
Medium |
Rich text editor (XSS risk) |
deep-chat |
2.0.1 |
Medium |
Chat component (user input) |
Risk Level: CRITICAL
Components:
•JWT token processing (System.IdentityModel.Tokens.Jwt)
•Multi-cloud authentication (Azure, AWS, Google)
•LDAP/Active Directory integration
•@nebular/auth for client-side authentication
Security Measures: Regular security updates, multi-factor authentication (MFA), token rotation, secure token storage.
Risk Level: HIGH
Supported Databases:
•Microsoft SQL Server (Microsoft.EntityFrameworkCore.SqlServer)
•MySQL (Pomelo.EntityFrameworkCore.MySql)
•SQLite (SQLitePCLRaw)
•MongoDB (Raynet.CommonImports.MongoDB)
Security Measures: Parameterized queries via Entity Framework, encrypted connection strings, TLS/SSL for database connections.
Risk Level: HIGH
Cloud Providers:
•AWS (EC2, RDS, S3)
•Microsoft Azure (Compute, Network, Storage)
•Google Cloud Platform
SaaS Integrations:
•Microsoft 365, Intune, Defender
•Google Workspace
•CrowdStrike, Cisco Meraki
•ServiceNow, Salesforce, Hubspot
•OpenAI API
Security Measures: Secure API key management, HTTPS for all API calls, rate limiting (AspNetCoreRateLimit), audit logging for API access.
Risk Level: HIGH
Components: Newtonsoft.Json (13.0.3), System.Text.Json, xlsx (frontend Excel parsing)
Potential Risks: Deserialization of untrusted data, Remote Code Execution (RCE), XML External Entity (XXE) attacks
Security Measures: TypeNameHandling=None in Newtonsoft.Json, input validation before deserialization, file upload scanning.
Risk Level: MEDIUM-HIGH
Risks:
•Cross-Site Scripting (XSS) via jQuery and user input fields
•Client-side cryptography with crypto-js (should be avoided for sensitive data)
•Cross-Site Request Forgery (CSRF)
•Malicious file uploads
Security Measures: Content Security Policy (CSP), input sanitization, CSRF token validation, server-side encryption for sensitive data.
The development and security practices of Raynet One Data Hub align with the following standards:
•ISO/IEC 27001 - Information Security Management
•NIST Cybersecurity Framework - Security best practices
•OWASP Top 10 - Web application security
•CWE/SANS Top 25 - Most dangerous software errors
•GDPR - Data protection (EU)
•CycloneDX - SBOM format standard
Raynet GmbH follows a structured security maintenance schedule to ensure all components remain secure:
•Monthly: Critical security updates for authentication and cryptography components, vulnerability scans
•Quarterly: Update all dependencies, update SBOM documentation, security audit
•Annually: Major version updates, license compliance review, GDPR compliance review