Managing Encryption at Scale with Envelope Encryptionby@rohitjmathew

Managing Encryption at Scale with Envelope Encryption

tldt arrow
Read on Terminal Reader

Too Long; Didn't Read

Envelope Encryption involves encrypting your data with a Data Encryption Key, then encrypting the encrypted key with a Customer Master Key. You then store both the encrypted data and the encrypted DEK alongside each other in the database. This practice of using a wrapping key to encrypt data keys is known as envelope encryption. It's also a highly recommended pattern by PCI-DSS (Security Standard for Credit Card Processing) and results in much stronger data privacy and data protection of Personally Identifiable Information (PII)

People Mentioned

Mention Thumbnail

Companies Mentioned

Mention Thumbnail
Mention Thumbnail
featured image - Managing Encryption at Scale with Envelope Encryption
Rohit Jacob Mathew HackerNoon profile picture

@rohitjmathew

Rohit Jacob Mathew

Learn More
LEARN MORE ABOUT @ROHITJMATHEW'S EXPERTISE AND PLACE ON THE INTERNET.
react to story with heart
Rohit Jacob Mathew HackerNoon profile picture
by Rohit Jacob Mathew @rohitjmathew.SDE at Trellix | Auth0 Ambassador | Ex Turtlemint & HackerRank | An Eccentric Coder
Website

RELATED STORIES

L O A D I N G
. . . comments & more!
Hackernoon hq - po box 2206, edwards, colorado 81632, usa