![ably-logo-faqs-neg.png]](https://faqs.ably.com/hs-fs/hubfs/ably-logo-faqs-neg.png?height=40&name=ably-logo-faqs-neg.png){kind=logo}
Ably architecture, transports, and security
Details on how Ably works and what makes us reliable and secure
Transports and connections
Security
- If I need to whitelist Ably's servers from a firewall, which ports, IPs and/or domains should I add?
- How do I report a security or privacy vulnerability on Ably
- Transport Layer Security (TLS) Version Support
- Authenticated and identified clients
- Are messages sent to and received from Ably securely using TLS?
- Token and Basic authentication
- How can you restrict which channels a client can access?
- Using capabilities to manage client access privileges on channels
- When I change a key's capabilities in the dashboard, will existing connections get those capabilities immediately?
- Recommendations for incrementally authorising new capabilities
- Can a client emulate any client ID i.e. authenticate using a wildcard client ID?
- Is it secure to send the access_token as part of the websocket url query params?
- DOS attack prevention
- Cross-platform symmetric encryption offered by the libraries