Hermes Messaging Service security model
The Hermes Messaging Service security model relies on the following capabilities.
| Capability | Description |
|---|---|
| Namespaces and data isolation | All Kafka topics are namespaced per customer. You can only view topics that belong to you and your topics aren't visible to anyone else. |
| Authentication and authorization | The Hermes Messaging Service requires certificate-based authentication using mTLS endpoint authentication with trusted identities and authorization based on identity. |
| Domain separation | Domain separation is supported with the Hermes Messaging Service. See Hermes Messaging Service domain separation. |
| High-availability | Failover is provided by multiple Kafka clusters running in separate ServiceNow datacenters. |