Data protection

Azure Data Factory is not encrypted with a CMK

Platform(s)
Compliance Frameworks
  • coppa
  • ,
  • CPRA
  • ,
  • iso_27001_2022
  • ,
  • iso_27002_2022
  • ,
  • Mitre ATT&CK
  • ,
  • mpa
  • ,
  • NIST 800-53
  • ,
  • pipeda

Description

Azure Data Factory is Azure's cloud ETL service for scale-out serverless data integration and data transformation.{AzureDataFactory} is not encrypted with customer managed key (CMK). Encrypting the data factory ensures that the entire content is fully unrecoverable without a key and thus protects from unwarranted reads. Encryption with customer managed key (CMK) is superior encryption although requires additional planning. Using customer managed keys may provide an additional level of security or meet an organization's regulatory requirements.