For instance, multi-tenant applications might want to encrypt based on the end user. However, it is unable to model some application-level policies. This option offers high performance, application transparency, and is typically easy to deploy. One example is that indexes cannot be encrypted.įilesystem-level encryption. However, there can be performance issues. Most database vendors offer some form of encryption. Similar to application-level encryption in terms of its properties. This is also not an option for customers of existing applications that do not support encryption.ĭatabase-level encryption. However, writing applications to do this is hard. The application has ultimate control over what is encrypted and can precisely reflect the requirements of the user. This is the most secure and most flexible approach. Choosing to encrypt at a given layer comes with different advantages and disadvantages.Īpplication-level encryption.
0 Comments
Leave a Reply. |