Products
HashiCorp Product Suite
Terraform
Vault
Consul
Nomad
Vagrant
Packer
Sentinel
AnnouncementHashiCorp Consul Service on AzureBringing Consul's Multi-Cloud Service Networking platform as a fully managed service to Microsoft Azure.Learn More
WhitepaperUnlocking the Cloud Operating ModelA whitepaper on achieving the fastest path to value in a modern, multi-cloud datacenter.Read Whitepaper
Company
Company
About Us
Contact
Jobs
Our Principles
Press
Tao of HashiCorp
JobsWe're hiring!Join us in building a set of industry-leading open source tools and commercial products that focus on simple workflows for developers, operators, and security professionals.View all open positions
Partners
HashiCorp Ecosystem & Partners
Our EcosystemA network consisting of industry leading Cloud, Technology, and Channel Partners.
Product IntegrationsCloud Integrations
Technology Integrations
Find a PartnerSystem Integrators
Resellers
Training Partners
Become a PartnerChannel Program Application
Technology Program Application
Partner Login
Partner AnnouncementAnnouncing Consul Service on AzureBringing Consul's Multi-Cloud Service Networking platform as a fully managed service to Microsoft Azure.Read Press Release
Get Pricing

Learn
Learn
Learn Our Products
Certifications
Resources
Blog
Training
Events
Community
Docs
Terraform
Vault
Consul
Nomad
Vagrant
Packer
Sentinel
LearnLearn our productsGo from beginner to expert on HashiCorp tools with step-by-step online help.Get started with Vault
Support

Overview
Use Cases
- Back
- Use Cases
- Secrets Management
- Data Encryption
Enterprise
Whitepaper

GitHub Download

Data Encryption

Protect sensitive data with centralized key management and simple APIs for data encryption.

Get Whitepaper Get Started

Protect Sensitive Data Across Clouds and Private Datacenters

The Challenge

All application data should be encrypted, but deploying cryptography and key management infrastructure is expensive, hard to develop against, and not cloud or multi-datacenter friendly.

The Solution

Vault provides encryption as a service with centralized key management to simplify encrypting data in transit and at rest across clouds and datacenters.

Encryption Features

API-driven Encryption

Encrypt and decrypt application data with an HTTP (TLS) API call. Key management, encryption algorithm, and more are offloaded and centrally managed by Vault.

Encryption Key Rolling

Update and roll new keys throughout distributed infrastructure while retaining the ability to decrypt encrypted data.

FIPS 140-2 & Cryptographic Compliance

Use FIPS 140-2-certified HSMs to ensure that Critical Security Parameters are protected in a compliant fashion.

Replication Filters

Selectively Whitelist/Blacklist and activate or deactivate mounts for Secret Mounts for replication filtering.

Vault Open Source and Enterprise Features

Learn more about data protection features with Vault Open Source and collaboration, governance, and multi-datacenter features with Vault Enterprise.

View Features Contact Sales

Your browser is out-of-date!

Update your browser to view this website correctly. Update my browser now