Attachments Encryption at rest

Go to solution
pravinsale
Kilo Contributor

‎08-29-2017 03:33 PM

Hi, how do you achieve encryption at rest for attachments used in HR Case Management Application? What are the pros and cons of it if we have to do it.

Labels:
0 Helpfuls
  • 2,165 Views
1 ACCEPTED SOLUTION

Go to solution
tim210
ServiceNow Employee
ServiceNow Employee

‎08-29-2017 05:16 PM

The Encryption Contexts feature is probably what you want:


Encryption support



I've seen customers using it with a simple 'Encrypt Attachment' checkbox on the attachment upload dialog. You could also probably customise it to always encrypt attachments.



The main downside is that the 'contexts' that allow particular users to decrypt the attachments and view the contents are specific to the instance. So you can't send the attachments out from the instance in emails (technically you can, but they'd be encrypted and so unreadable to third parties). However there are customisations that might allow you to do this if it's something you need:


https://community.servicenow.com/thread/162811


https://share.servicenow.com/app.do#/detailV2/f2d4d6e0877759008bf84b0b0e434d9a/overview


View solution in original post

5 REPLIES 5

Go to solution
tim210
ServiceNow Employee
ServiceNow Employee

‎08-29-2017 05:16 PM

The Encryption Contexts feature is probably what you want:


Encryption support



I've seen customers using it with a simple 'Encrypt Attachment' checkbox on the attachment upload dialog. You could also probably customise it to always encrypt attachments.



The main downside is that the 'contexts' that allow particular users to decrypt the attachments and view the contents are specific to the instance. So you can't send the attachments out from the instance in emails (technically you can, but they'd be encrypted and so unreadable to third parties). However there are customisations that might allow you to do this if it's something you need:


https://community.servicenow.com/thread/162811


https://share.servicenow.com/app.do#/detailV2/f2d4d6e0877759008bf84b0b0e434d9a/overview


Go to solution
pravinsale
Kilo Contributor

‎08-30-2017 01:54 PM

Thanks Tim. That's really helpful.


0 Helpfuls

Go to solution
roshanrao
Kilo Expert

‎09-05-2017 12:22 PM

Pravin,


I am working on a similar requirement. The issue that you have is that Encryption Contexts only seems to work when documents are being uploaded from the UI. Documents sent in through emails that get attached to cases will not get encrypted.



I am pointing out this gap. I am investigating other options, i.e., Edge Encryption.



- R