ZeroMQ is a messaging library, so application-level security design is mandatory.
- Use CURVE/ZAP mechanisms for authentication and encryption where applicable.
- Restrict socket exposure to trusted peers/networks.
- Avoid unauthenticated public-facing sockets.
- Validate message schemas and size limits before processing.
- Implement explicit authorization in app protocol layer.
- Log peer identity and message handling failures for audit.