Encryption in Site24x7

Encryption safeguards the contents of a message so that only the intended recipient can read it. Encryption is done by replacing the contents with unrecognizable data, which can be decrypted only by the intended recipient. Thus, data is protected from those who might try to steal it.

 

Two situations where encryption can be used are:

• Encryption in Transit

• Encryption at Rest (EAR)

 

Encryption in Transit

This refers to data that is encrypted when it is in transit—including from your browser to the web server and other third parties via integrations. Encrypting data in transit protects your data from man-in-the-middle attacks.

Learn more about Encryption in Transit.

 

Encryption at Rest

This refers to encrypted data that is stored (not moving)—either on a disc, in a database, or as some other form of media. Encrypting data by storing it in the servers provides a higher level of security than encrypting data during transit. EAR protects against any possible data leak due to server compromise or unauthorized access.

 

Encryption is done at the application layer using the AES-256 algorithm, a symmetric encryption algorithm using 128-bit blocks and 256-bit keys. The key used to convert the data from plain text to cipher text is called a Data Encryption Key (DEK). The DEK is further encrypted using the Key Encryption Key (KEK), providing yet another layer of security. Our in-house Key Management Service (KMS) generates and maintains the keys.

Learn more about our KMS.

 

What Data do we encrypt in Site24x7? 

Site24x7 encrypts the following sensitive data at the application level.

• Mobile number

• Email address

• Hostname

• IP address

• URL

• Access token

• Domain name

• Credential

• Service account
  

• NCM configuration backups

 

Full-disk encryption

Besides application-layer encryption, full-disk encryption is available in India (IN), Australia (AU), Saudi Arabia (SA), Canada (CN), and Japan (JP) data centres. Learn more about full-disk encryption.

Learn more about encryption and our KMS.

• Related Articles

• Where are Site24x7's physical data storage regions located?

  Site24x7's integrated data centers are located in the US, European Union, India, China, Australia, and Japan. All Site24x7 customer-related data are stored in these physical storage regions. Data Center Primary Data Center Disaster Recovery Data ...

• Site24x7 Real User Monitoring (RUM) - Data Collection

  When you include Site24x7 RUM beacon script in your web pages, the following data is collected. All data that's being collected is in accordance with GDPR compliance. Performance details of web page load time - Metrics like response time of web page ...

• Understanding latency in data center operations

  Latency, measured in milliseconds (ms), is the time taken for a response to be generated by an application or service. Lower latency results in quicker responses. Latency can occur due to several factors like: Network traffic: High volumes can slow ...

• No data for service and process in Windows server monitor

  If you see "No Data" for process and service metrics (such as CPU or memory usage of monitored services) in the Site24x7 Windows server monitor user interface, follow the troubleshooting steps below. Run PowerShell Commands Open PowerShell as ...

• Understanding data retention in Site24x7

  Data retention refers to the practice of storing data for a specific period to meet operational, legal, or business needs. It ensures that important information is available for compliance, audits, security investigations, and historical analysis. ...