Core Platform Verification

Technical Specifications

Documentation on environment authentication, SSL protocols, and authorized domain identification using DNS authority records for the casoola-compliance.site gateway.

Domain Authority Records

The following DNS zone configuration is mandatory for all nodes associated with the Casoola Systems infrastructure.

_dmarc.casoola-compliance.site. IN TXT "v=DMARC1; p=reject; rua=mailto:tech@casoola-compliance.site; ruf=mailto:tech@casoola-compliance.site; fo=1; adkim=s; aspf=s"
casoola-compliance.site. IN TXT "v=spf1 include:_spf.casoola-compliance.site -all"
casoola-compliance.site. IN CAA 0 issue "letsencrypt.org"

Authentication Protocols

All network traffic must be encrypted using TLS 1.3 or higher. SSL certificate pinning is implemented for all primary communication nodes.

SSL/TLS Standards

Minimum: TLS 1.2 (Legacy Support)

Standard: TLS 1.3 (Mandatory)

DNSSEC

Status: Enabled

Algorithm: ECDSAP256SHA256

Environment Identification

Authorized domain identification is performed via automated DNS authority record verification. Nodes failing the cryptographic handshake are immediately isolated from the synchronization registry.

Technical verification of casoola-compliance.site is conducted hourly against the primary node at casoola.com.