Transparent Data Encryption
|
DataStax recommends encrypting sensitive configuration properties in the |
Locate the dse.yaml and cassandra.yaml configuration files. The location of these files depends on the type of installation:
Filename |
File Location |
|---|---|
|
Package installations: Tarball installations: |
|
Package installations: Tarball installations: |
- About Transparent Data Encryption
-
Protects sensitive at-rest data stored in configuration files, database tables and SSTable indexes.
- Configuring local encryption
-
Use locally-stored symmetric encryption keys to protect any or all sensitive system resources, configuration file properties, search indexes, and database tables.
- Configuring KMIP encryption
-
Protect sensitive data using encryption keys from a remote Key Management Interoperability Protocol (
KMIP). - Encrypting Search indexes
-
DSE Search index encryption shares the setup with SSTable encryption.
- Migrating encrypted tables from earlier versions
-
Encrypted tables require specific actions to migrate to later versions of DataStax Enterprise (DSE).
- Bulk loading data between TDE-enabled clusters
-
Bulk loading data between TDE-enabled clusters requires the correct deployment of encryption keys.
