I'm not sure what you mean by "security", but in general streams use exactly the same security model as for any other kind of transaction. You can't write to a stream under a particular identity (address) unless you have the corresponding private key. And the content of a stream cannot be retroactively modified or deleted without doing the same to the blockchain as a whole. Does this answer the question?
