- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-29-2017 03:33 PM
Hi, how do you achieve encryption at rest for attachments used in HR Case Management Application? What are the pros and cons of it if we have to do it.
Solved! Go to Solution.
- Labels:
-
HR Service Delivery
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-29-2017 05:16 PM
The Encryption Contexts feature is probably what you want:
I've seen customers using it with a simple 'Encrypt Attachment' checkbox on the attachment upload dialog. You could also probably customise it to always encrypt attachments.
The main downside is that the 'contexts' that allow particular users to decrypt the attachments and view the contents are specific to the instance. So you can't send the attachments out from the instance in emails (technically you can, but they'd be encrypted and so unreadable to third parties). However there are customisations that might allow you to do this if it's something you need:
https://community.servicenow.com/thread/162811
https://share.servicenow.com/app.do#/detailV2/f2d4d6e0877759008bf84b0b0e434d9a/overview

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-29-2017 04:50 PM
Hi Pravin,
Take a look at encryption doc - https://www.servicenow.com/content/dam/servicenow/documents/whitepapers/wp-data-encryption-with-serv...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-29-2017 05:16 PM
The Encryption Contexts feature is probably what you want:
I've seen customers using it with a simple 'Encrypt Attachment' checkbox on the attachment upload dialog. You could also probably customise it to always encrypt attachments.
The main downside is that the 'contexts' that allow particular users to decrypt the attachments and view the contents are specific to the instance. So you can't send the attachments out from the instance in emails (technically you can, but they'd be encrypted and so unreadable to third parties). However there are customisations that might allow you to do this if it's something you need:
https://community.servicenow.com/thread/162811
https://share.servicenow.com/app.do#/detailV2/f2d4d6e0877759008bf84b0b0e434d9a/overview
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎08-30-2017 01:54 PM
Thanks Tim. That's really helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎09-05-2017 12:22 PM
Pravin,
I am working on a similar requirement. The issue that you have is that Encryption Contexts only seems to work when documents are being uploaded from the UI. Documents sent in through emails that get attached to cases will not get encrypted.
I am pointing out this gap. I am investigating other options, i.e., Edge Encryption.
- R