Skip to content

Vaticy Documentation

Bring your own key

Vaticy Documentation

Introduction
Introduction
Datasources
Datasources
- Overview
- Agentless Collectors
  Agentless Collectors
  - Overview
  - EKS
    EKS
    
    Overview
    
    Access Entry
    
    ConfigMap
    
    Service Account Token
    
    Status
    
    Update Token
  - AKS
    AKS
    
    Overview
- CloudWatch
Investigations
Investigations
- Overview
- Alerts
- Chat
Security
Security
- Bring your own key Bring your own key
  Table of contents
  - 2 sided coin
    
    Downsides
    
    Upsides
  - Enable byok
Support
Support
- Contact Us
- FAQ

Bring your own key

Bring Your Own Key (BYOK) is an encryption key management system that allows enterprises to encrypt their data and retain control and management of their encryption keys.

To enable byok please contact us via the dedicated Slack channel, or send an email to founders@vaticy.com.

2 sided coin

Enabling byok is possible, but it comes with down sides too.

Downsides

Allowing byok comes with some downsides:

Unavailable encryption key from the customers side means the cluster can't be restarted, updated and will eventually stop running after several minutes
Rotating the encryption key won’t have an immediate effect on the pre-existing clusters
Some of the data queries could have latency issues

Upsides

Allowing byok comes with some upsides too:

The customer is in-charge of the encryption key
Deleting the encryption key will result in the database being unavailable until the key is restored

Enable `byok`

To enable byok please contact Vaticy via the dedicated Slack channel, or send an email to founders@vaticy.com.