On Friday, May 10, 2013 1:02:02 PM UTC-5, Kinesh Patel wrote: > > Question for the App Engine Team here - I'm trying to determine if > datastore backups are encrypted at rest, and if so, what level of > encryption is employed (PGP? AES 128/256?). This is a question coming from > one of our enterprise customers as part of a vendor approval process. > Additionally, it would be nice if the docs were more explicit about where > encryption is used in the App Engine infrastructure and what level of > encryption is employed (e.g. HRD data in flight, at rest, Google Cloud > Storage, etc.).
Disclaimer: I am not an employee of Google, nor part of the App Engine team. I have experience working with sensitive information (medical & financial) though. If you're storing your datastore backups in Google Cloud Storage the information is encrypted in transit (Google Cloud Storage API endpoints are via HTTPS). However, the data is not encrypted when stored in Google Cloud Storage. For citation, see here: https://developers.google.com/storage/docs/concepts-techniques (the gray box on the top of the page). I will also point you to the fact that App Engine and other Google Cloud platforms are certified to meet several 3rd party security standards (see http://googleenterprise.blogspot.com/2011/08/security-first-google-apps-and-google.html ). You'll have to provide more information about your customer's requirements (minimum level of encryption, access to files, etc) if you want a more specific answer. ----------------- -Vinny P Technology & Media Advisor Chicago, IL My Go side project: http://invalidmail.com/ -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/google-appengine?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
