The Zurich release has arrived! Interested in new features and functionalities? Click here for more

about Cloud Encryption

newhand
Mega Sage

‎12-25-2023 01:52 AM - edited ‎12-25-2023 01:53 AM

Hi all 

I hope someone can help me .

 

I have readed the offical document about  cloud encryption.

But i can't understand it.

1. It seems to be used to manage  some key(why only one key is active at one time) ?

    where to use the key? out of servicenow ?

2.  why it can be called  "Cloud" ??  what cloud ? aws ? or just because servicenow manages the key and servicenow is a cloud production ?

 

REALLY NEED HELP!!

 

 

Please mark my answer as correct and helpful based on Impact.
0 Helpfuls
  • 1,973 Views
3 REPLIES 3

Maik Skoddow
Tera Patron
Tera Patron

‎12-25-2023 02:51 AM - last edited on ‎02-19-2025 07:58 AM by Administrator

Hi @newhand 

I don't know which documentation you are referring to but I think the following page gives a pretty good introduction of Cloud Encryption https://docs.servicenow.com/bundle/vancouver-platform-security/page/administer/encryption-dare/conce... 

There is also an introduction available in Now Learning: https://learning.servicenow.com/lxp/en/servicenow-vault/cloud-encryption-introduction?id=learning_co... 

 

And furthermore you can read about Cloud Encryption in the PDF Data Encryption - Technologies for data protection on the Now Platform :

"Cloud Encryption provides block encryption of the full database host with industrystandard, customer-controlled, key lifecycle management built into the ServiceNow user interface. It encrypts data at rest in the database using symmetric AES 256-bit encryption with no impact to functionality. Any new or changed data as it is entered into a table and associated activity log files (e.g., bin, redo, undo, and error) are also encrypted. When this feature is used, all related instances are encrypted, together with associated replication traffic and backups, and instance cloning is still possible. Both new and existing instances on supported releases of the Now Platform can take advantage of Cloud Encryption. ServiceNow Cloud Encryption also gives customers the option to use a ServiceNowgenerated key, or a key created and supplied by the customer (Customer Managed Key). Key rotation operations are completely managed by customers from within their ServiceNow instance, providing flexibility and autonomy, as well as avoiding the need to involve ServiceNow Customer Support. "

 

And to answer one of your questions: Yes "Cloud" is about the "ServiceNow Cloud" and not other providers like AWS.

 

Maik

newhand
Mega Sage
In response to Maik Skoddow

‎12-25-2023 05:40 PM

@Maik Skoddow 
Thank you for you reply!

I lack relevant knowledge about Encryption。

I will take a further read about the document and the nowlearning couse.

 

And  one more question.

If i want to use Cloud Encryption, the main action what i  need to take is just  active the plugin and upload a key(or use the the key provided by servicenow) ?

 

 

 

 

Please mark my answer as correct and helpful based on Impact.
0 Helpfuls

Maik Skoddow
Tera Patron
Tera Patron
In response to newhand

‎12-25-2023 07:49 PM

Hi @newhand 

I'm not sure whether Cloud Encryption is for free. It's pretty new and I have never used it before. And to the best of my knowledge, it is part of the entitlement bundle "Platform Encryption". Therefore, I recommend having a conversation with ServiceNow to find the best option for you and also to hear how to activate it correctly.

Maik