Encryption in Site24x7

Encryption in Site24x7


Encryption safeguards the contents of a message so that only the intended recipient can read it. Encryption is done by replacing the contents with unrecognizable data, which can be decrypted only by the intended recipient. Thus, data is protected from those who might try to steal it.

 

Two situations where encryption can be used are:

  • Encryption in Transit

  • Encryption at Rest (EAR)

 

Encryption in Transit

This refers to data that is encrypted when it is in transit—including from your browser to the web server and other third parties via integrations. Encrypting data in transit protects your data from man-in-the-middle attacks.

Learn more about Encryption in Transit.

 

Encryption at Rest

This refers to encrypted data that is stored (not moving)—either on a disc, in a database, or as some other form of media. Encrypting data by storing it in the servers provides a higher level of security than encrypting data during transit. EAR protects against any possible data leak due to server compromise or unauthorized access.

 

Encryption is done at the application layer using the AES-256 algorithm, a symmetric encryption algorithm using 128-bit blocks and 256-bit keys. The key used to convert the data from plain text to cipher text is called a Data Encryption Key (DEK). The DEK is further encrypted using the Key Encryption Key (KEK), providing yet another layer of security. Our in-house Key Management Service (KMS) generates and maintains the keys.

Learn more about our KMS.

 

What Data do we encrypt in Site24x7? 

Site24x7 encrypts the following sensitive data at the application level.

  • Mobile number

  • Email address

  • Hostname

  • IP address

  • URL

  • Access token

  • Domain name

  • Credential

  • Service account

 

Full-disk encryption

Besides application-layer encryption, full-disk encryption is available in India (IN), Australia (AU) , and Japan (JP) data centers. Learn more about full-disk encryption.


    • Related Articles

    • Security for Site24x7 Network Monitoring

      How is performance data sent from the user environment to the Site24x7 Data Center? The On-Premise Poller uses a HTTPS connection to send performance data from the user environment to the Site24x7 Data Center.   What access does Site24x7 need to ...

    • Data retention in Real User Monitoring (RUM).

      The following table explains the data retention period of real user monitoring data that are being stored by Site24x7.  S.No Data type Retention period 1 JS errors One week 2 Filterable performance and user sessions One month 3 Performance metrics ...

    • Where are Site24x7's physical data storage regions located?

      Site24x7's integrated data centers are located in the US, European Union, India, China, Australia, and Japan. All Site24x7 customer-related data are stored in these physical storage regions. Data Center USA European Union India China Australia Japan ...

    • Security for SQL Server Monitoring

      Do I have to provide my SQL Server credentials for Site24x7 to monitor them? No, Site24x7 does not ask for your SQL Server credentials for monitoring. Does Site24x7 connect to the SQL Servers directly? No, Site24x7 does not connect to the SQL ...

    • Site24x7 Real User Monitoring (RUM) - Data Collection

      When you include Site24x7 RUM beacon script in your web pages, the following data is collected. All data that's being collected is in accordance with GDPR compliance.  Performance details of web page load time - Metrics like response time of web page ...