HashiConf Our community conference is taking place in San Francisco and online October 10-12. Register now
HashiCorp Cloud Platform
HashiCorp Cloud Platform Home

ยปHCP Security Overview

This topic describes the HashiCorp Cloud Platform's (HCP) security model and the security controls available to users. The following features are available to help you secure access to your HCP environment:

  • Service Principals can authenticate service requests from applications, hosted services, and automated tools.
  • Single Sign-On (SSO) can mitigate account take over (ATO) attacks, provide a universal source of truth to federate identities from your identity provider (IDP), and help you better manage user access to your organization.
  • Multi-factor Authentication (MFA) can use two-factor authentication (2FA) to protect your account and your company's data.

For more information about security offerings for specific products, refer to HCP Consul and HCP Vault. For information about HashiCorp's security teams and compliance programs, or to find HashiCorp's public PGP keys and code signature verification, refer to HashiCorp Security and Trust Center.

Management plane service

The hosted management plane service offers global visibility and administration of both HCP-managed and self-managed clusters. The management plane service provides a secure way to register and administer your self-managed clusters.

HCP provides the following security measures for self-managed clusters that are deployed with the management plane service:

  • The self-managed cluster nodes initiate the connection to HashiCorp Cloud Platform. This connection is encrypted with TLS.
  • The connection is authenticated with an auto-generated service principal. When you delete the cluster, HCP deletes the service principal associated with the cluster.
  • You can opt-out of the hosted management service for self-managed clusters by unlinking your self-managed cluster from HCP. Unlinking only deletes the HCP resources for your self managed cluster. Once unlinked, HCP no longer receives any data from your self-managed cluster.
  • Your HCP cluster meta-data is securely managed. In addition, the cluster meta-data is covered by SOC 2 Type II controls and GDPR/CCPA controls, as applicable.

Security Shared-Responsibility Model

Security of the HashiCorp Cloud Platform (HCP) is a shared responsibility between HashiCorp and the customer. This shared model can help reduce the customer's operational burden, as HashiCorp manages and controls certain components of the system, such as management of the operating system (e.g. updates and security patches), while the customer assumes the responsibilities and management of access management, multi-factor authentication (MFA), and configuration of access control lists (ACLs).

Please refer to HashiCorp Cloud Platform Roles/Responsibilities for more information on this topic.