Data encryption is a security measure that protects data from unauthorized access or tampering. It is important to encrypt data at rest, which refers to data that is stored on a device or storage medium, and data in transit, which refers to data that is being transmitted over a network. Box provides several options for enabling data encryption for data at rest and in transit. This technical reference guide outlines the steps for enabling these security measures in Box.
Enabling data encryption for data at rest in Box
- Enable server-side encryption: Box automatically encrypts all data at rest using AES-256 encryption. This feature is enabled by default and cannot be disabled.
Enabling data encryption for data in transit in Box
- Enable SSL/TLS for web traffic: Box uses Transport Layer Security (TLS) to encrypt web traffic. TLS uses a combination of symmetric and asymmetric encryption to secure data transmission. To ensure that TLS is enabled for web traffic, make sure that you are accessing Box using the "https://" protocol.
- Enable SSL/TLS for API traffic: Box also uses TLS to encrypt API traffic. To ensure that TLS is enabled for API traffic, make sure that you are using the "https://" protocol when making API requests.
Enabling data encryption for data at rest and in transit is an important security measure for protecting sensitive data in Box. By following the steps outlined in this technical reference guide, you can ensure that your data is protected from unauthorized access and tampering.