Description

If Double Encryption is enabled, another layer of encryption is implemented at the hardware level before the storage or network level. Information will be encrypted before it is even accessed, preventing both interception of data in motion if the network layer encryption is broken and data at rest in system resources such as memory or processor cache. Encryption will also be in place for any backups taken of the database, so the key will secure access the data in all forms.

• 

  Recommended Mitigation

  Enabling Infrastructure double encryption is possible only in the creation of a new MySQL DB server, Azure Database for MySQL - Single Server is scheduled for retirement by September 16, 2024. As part of this retirement, Azure will no longer support creating new Single Server instances from the Azure portal beginning January 16, 2023. For more information, please follow the link <a href="https://learn.microsoft.com/en-us/azure/mysql/single-server/whats-happening-to-mysql-single-server." target="_blank" rel="noopener noreferrer">https://learn.microsoft.com/en-us/azure/mysql/single-server/whats-happening-to-mysql-single-server.</a>