This page covers the security aspects of using openIDL.
Since openIDL is based on Hyperledger Fabric, the security of hyperledger fabric is a major thing to consider. Here is an article on that subject: https://espeoblockchain.com/blog/a-practical-guide-to-hyperledger-fabric-security
openIDL is intended to run in a separate "Account" from the rest of the cloud for an organization. This makes it possible to tightly control the connectivity to the web and to internal system.
TODO: provide additional context and background.