API-driven Encryption
Encrypt application data during transit and rest with AES 256-bit CBC data encryption and TLS in transit.
All application data should be encrypted, but deploying a cryptography and key management infrastructure is expensive, hard to develop against, and not cloud or multi-datacenter friendly
Vault provides encryption as a service with centralized key management to simplify encrypting data in transit and at rest across clouds and data centers
Encrypt application data during transit and rest with AES 256-bit CBC data encryption and TLS in transit.
Update and roll new keys throughout distributed infrastructure while retaining the ability to decrypt encrypted data.