In this video, note the option to encrypt data at rest, protecting stored date from attackers, and satisfying auditors.
- [Instructor] In addition to access control to our data…we also want to impose encryption.…Now unlike previously, encryption is applied by default.…Navigate to the Azure portal…and select one of your storage accounts.…On the left look under Settings and Encryption…and so previously where you had to opt into…transparent encryption, Microsoft now applies encryption…at the storage layer by default.…So Azure storage will always…encrypt your data behind the scenes.…Now should you wish to control…the keys used for the encryption,…you can do so by placing keys in the Azure Key Vault…and then using the Azure Key Vault…you can use keys that you control…for the encryption of your data.…
Select the checkbox Use your own key and scroll down.…Notice that you can select a key from an Azure Key Vault…and then that key will be used for encryption.…There's no additional action needed from the client side…so once you have your access control established…and you're able to interact with the APIs be it for blobs,…tables, files or cues, Azure will take care of encryption…
Released
12/11/2018- Creating and managing storage accounts in the Azure portal
- Stored access policies for granting privileges
- Encrypting data at rest
- Azure Storage Files and net use
- Querying files
- Accessing files from both SMB and the REST API concurrently
- Using AzCopy to copy data among storage accounts asynchronously
Share this video
Embed this video
Video: Encryption at rest