How would you implement authentication, authorization, and data protection at rest and in transit in a secure architecture at Persistent Systems?