π Platform Documentation
Welcome to the technical documentation for platform security and architecture within the Mojaloop ecosystem.
This site focuses on how the platform is actually implemented and operated, rather than abstract or theoretical designs.
ποΈ Architecture
- Platform Architecture Overview
Provides a high-level reference architecture covering: - Mojaloop Hub, PM4ML, and Tazama
- Cloud, on-premise, and hybrid deployments
- PrimaryβStandby topology
- Platform responsibilities and trust boundaries
π Security Architecture
- Hub β PM4ML Security Architecture
Describes the end-to-end security model between the Hub and PM4ML, including: - Mutual TLS (mTLS) for transport-level security
- JWS for application-level message signing
- Certificate lifecycle and rotation
- Trust boundaries and ownership
π§ Upcoming Documentation
The following sections are planned and will be published incrementally:
- π Certificate & Key Management
- π¨ Incident & Failure Scenarios
- π Environment & Capacity Model
- βοΈ Operational Runbooks
These documents will reflect validated production behavior and operational best practices.
π More information
For general information about ThitsaWorks, including our services and platform offerings, visit:
π About this site
This documentation reflects real-world implementation and operational security practices used in Mojaloop-based deployments.
It is intended for platform engineers, security engineers, and operators who need a clear and practical understanding of how the system is secured and operated in production.