locked
Azure Database for MySQL Encryption RRS feed

  • Question

  • Is encryption at rest available for Azure Database for MySQL? Or is the operating system on which MySQL encrypt the media on which it runs?

    Thanks,

    Paul


    Paul Litwin

    Monday, February 3, 2020 1:50 AM

Answers

  • Connections to the database services are protected further by configuring MySQLPostgreSQL, and MariaDB native database firewalls. Native database authentication methods for MySQL, PostgreSQL and MariaDB are supported out of the box. All data stored by the service is secured via the Azure Storage Service through 256 bit AES encryption that is always on and cannot be turned off.

    The Azure Database for MySQL service uses the FIPS 140-2 validated cryptographic module for storage encryption of data at-rest. Data, including backups, are encrypted on disk, with the exception of temporary files created while running queries. The service uses the AES 256-bit cipher included in Azure storage encryption, and the keys are system managed. Storage encryption is always on and can't be disabled.

    Hope this helps! 

    Kindly let us know if the above helps or you need further assistance on this issue.  
    -----------------------------------------------------------------------------------------

    Do click on "Mark as Answer" and Upvote on the post that helps you, this can be beneficial to other community members.



    Monday, February 3, 2020 5:47 PM

All replies

  • Connections to the database services are protected further by configuring MySQLPostgreSQL, and MariaDB native database firewalls. Native database authentication methods for MySQL, PostgreSQL and MariaDB are supported out of the box. All data stored by the service is secured via the Azure Storage Service through 256 bit AES encryption that is always on and cannot be turned off.

    The Azure Database for MySQL service uses the FIPS 140-2 validated cryptographic module for storage encryption of data at-rest. Data, including backups, are encrypted on disk, with the exception of temporary files created while running queries. The service uses the AES 256-bit cipher included in Azure storage encryption, and the keys are system managed. Storage encryption is always on and can't be disabled.

    Hope this helps! 

    Kindly let us know if the above helps or you need further assistance on this issue.  
    -----------------------------------------------------------------------------------------

    Do click on "Mark as Answer" and Upvote on the post that helps you, this can be beneficial to other community members.



    Monday, February 3, 2020 5:47 PM
  • @Paul Litwin Is there any update on the issue?

    If the suggested answer helped for your issue, do click on "Mark as Answer" and “Vote as Helpful” on the post that helps you, this can be beneficial to other community members.

    Thursday, February 6, 2020 4:15 AM
  • @Paul Litwin Is there any update on the issue?

    If the suggested answer helped for your issue, do click on "Mark as Answer" and “Vote as Helpful” on the post that helps you, this can be beneficial to other community members.

    Monday, February 10, 2020 5:43 PM