ApsaraDB RDS for MySQL - Supports Transparent Data Encryption with BYOK
Jul 30 2019
ApsaraDB RDS for MySQLContent
Target customers: customers who use ApsaraDB RDS for MySQL V5.6 High-availability Edition and who require to encrypt database files, such as finance industry, security industry, insurance industry, and governments. Features released: ApsaraDB RDS for MySQL V5.6 supports Transparent Data Encryption (TDE) with BYOK. You can manage keys by using Key Management Service (KMS). After you enable TDE, you cannot disable the feature and you cannot modify keys. When you use an existing custom key, note that: 1. After you disable the key, configure a key deletion plan, or delete the key material, the key becomes unavailable and you cannot use the key to encrypt or decrypt data. 2. After the KMS authorization relationship is revoked, restarting the RDS instance will cause the RDS instance to become unavailable.