Protecting data at rest in SaaS and PaaS. Encryption Basics
PaaS and SaaS persistence services store your data in their systems, often in their accounts or subscriptions. The service provider protects the system and its associated storage. We need to determine our appetite for risk when deciding what additional work must be done to secure the externally hosted data. Risks Data at rest must be protected with a multi-layered approach. Identify the attacks that you wish to prevent in order to determine how much protection you want. The list below is just a sample. disk re-use is hardware or technology-related. It can be mitigated without any application or user experience changes. Vendor -related access issues exist because a 3rd party is hosting the data. This includes vendor staff access and the ability to remove or render unusable your data in their ho Control Plane refers to dashboards or admin screens that are vendor-provided. Many have preview functions that let you validate the data. The built-in user permissions may not be fine-grain