Encryption at Rest

Securing your data with encryption at rest

GrapheneDB provides an Encryption at rest feature on all GrapheneDB databases.

The feature is fully transparent to the user, and at the same time it implements encryption for the following types of data:

  • Data at rest inside the disk volume
  • All data moving between the disk volume and the server instance
  • All backups created from the volume

Disk volume and backups are encrypted using the industry standard AES-256 algorithm, which meets a comprehensive range of compliance standards, such as HIPAA, PCI and NIST. Backups are decrypted on the fly when downloaded by the user, when used internally to provision new servers,or when performing database restores.