Encryption At Rest definition

Encryption At Rest. Importer shall use a reputable key management service (KMS), like AWS Key Management Service, to protect data at rest. All requests to use keys in the KMS shall be logged in logging system (like AWS CloudTrail) so Exporter may understand who used which key, in what context, and when it was used. Event data logged to the cloud logging system shall be set for inalterability. The KMS shall be designed so that neither the cloud infrastructure provider (including its employees) nor third-party providers to cloud infrastructure have the ability to retrieve, view, or disclose Exporter's primary keys in an unencrypted format. • Encryption In Transit: Any personal data processed by Importer shall be encrypted in transit over public networks using TLS 1.2+ with Perfect Forward Secrecy (PFS) to protect it from unauthorized disclosure or modification. Importer’s implementation of TLS shall enforce the use of strong ciphers and key-lengths were supported by the browser.

Split View

AI-Powered Contracts

Draft, Review & Redline at the Speed of AI

Get StartedBook a Demo

Examples of Encryption At Rest in a sentence

• Fully Compliant Encryption At Rest Data at rest includes information that resides in persistent storage in files, disks, blobs, tables,relational and object databases.

• Note: AAI utilizes Salesforce’s Sales, Service and Community Clouds and has implemented Salesforce Platform Encryption (At Rest and In Motion).