Data Security in Cloud — Securing AWS and Azure data

  • Protecting data at rest
  • Protecting data in transit
  • Data to be encrypted/Decrypted
  • Encryption/Decryption Algorithm
  • Key
  • Symmetric uses a private key for encryption and decryption.
  • Faster method than asymmetric encryption and is best used by individuals or within closed systems, but less secured while using in transmission
  • The most commonly used type of symmetric encryption is AES.
  • Asymmetric encryption uses paired public and private keys that are mathematically linked and can only be used together.
  • Either key can be used to encrypt data but the paired key must be used to decrypt it.
  • More secured and most commonly used types of asymmetric encryption are ElGamal, RSA, DSA, and PKCS.
  • Uses DES algorithm and can be run with a single key, two keys, or three different keys with increasing security.
  • 3DES uses a block cipher method, making it vulnerable to attacks such as block collision.
  • One of the first public-key algorithms and uses one-way asymmetric encryption.
  • RSA is popular due to its long key length and is used widely throughout the Internet.
  • It is part of many security protocols, like SSH, OpenPGP, S/MIME, and SSL/TLS, and is used by browsers to create secure connections over insecure networks.

Azure encryption models

Client-side encryption

Server-side encryption

Azure disk encryption

Azure Storage Service Encryption

Transparent Data Encryption

Always Encrypted feature

Cosmos DB database encryption

At-rest encryption in Data Lake

Encryption of data in transit

TLS encryption in Azure

Other In transit encryptions

HTTPS

SMB encryption

Azure VPN encryption

AZURE VPN

Key management with Key Vault

Summary

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store