• The biggest challenge with data encryption is key management i.e - how do you safely store secret keys for either symmetric or asymmetric cryptosystem.
  • Symmetric encryption uses a secret key to encrypt data and uses the same key to decrypt this data when needed. Asymmetric encryption works with a multi-key system.
  • Handle key management by sticking to best practices & outsourcing the underlying cryptography as much as possible.
  • Amazon KMS is a good option if you need to safely encrypt data symmetrically. For asymmetric encryption, consult a cryptography expert.

Full post here, 6 mins read