Azure
2025
Study Datasheet – Customer-Managed Keys for Azure Storage Encryption
·665 words·4 mins·
100
views
·
5
likes
Overview Azure Storage automatically encrypts all data at rest using Storage Service Encryption (SSE). When you specify a customer-managed key (CMK), that key is not used to encrypt the data, it is used to protect and control access to the key that encrypts the data.
2024
Azure SQL - Managing Database-Level Transparent Data Encryption (TDE) Keys with Azure PowerShell
·1409 words·7 mins·
100
views
·
5
likes
In my previous article, we explored how to set up server-level Transparent Data Encryption (TDE) in Azure SQL. This method uses a single encryption key to secure multiple databases on a server or managed instance, providing consistent protection across all databases.
Azure SQL - Managing Server-Level Transparent Data Encryption (TDE) Keys with Azure PowerShell
·1192 words·6 mins·
100
views
·
5
likes
In Azure SQL, server-level Transparent Data Encryption (TDE) provides centralized encryption across multiple databases within a server or managed instance. By default, Azure SQL uses a Service Managed Key (SMK) for TDE, but we can also choose to deploy a Customer Managed Key (CMK) for better control.