@Mateusz U I want to apologize as Notification Hubs seems to have changed with our //Build 2023 release that came out in May and my old notes that I previously used, are no longer valid.
An up to date look at the security features available to Azure Notification Hub are:
- Authentication and authorization: You can use Azure Active Directory (AAD) or Shared Access Signature (SAS) authentication to authenticate and authorize access to your Notification Hub. AAD authentication allows you to use your existing AAD credentials to authenticate access to your Notification Hub, while SAS authentication allows you to create and manage shared access policies and keys for your Notification Hub.
- Encryption: You can use transport layer security (TLS) to encrypt traffic between your Notification Hub and your clients. You can also use client-side encryption to encrypt the payload of your notifications before sending them to your Notification Hub.
- Monitoring and logging: You can use Azure Monitor to monitor the health and performance of your Notification Hub. You can also use Azure Log Analytics to collect and analyze logs from your Notification Hub.
- Compliance: You can use Azure Policy to enforce compliance with regulatory and organizational policies for your Notification Hub. You can also use Azure Security Center to monitor and assess the security posture of your Notification Hub.
The product group verified that VNet or NSG solutions are not available to limit access to Azure Notification Hub.
Please let us know if you have any further questions or concerns.
Lastly, if this answer helps, we ask you to provide another survey or mark this answer as valid as it helps us to recover from the previous not helpful survey. Thank you for your understanding.