Managed Disk Encryption vs Azure Disk Encryption

All replies

• 

  

  0

  Sign in to vote

  Hi!

  The reason to use Azure Disk Encryption (ADE) is because it offers IaaS virtual machines that are secure at REST with technology that meets industry and company standards.

  The other reason is that it also offers IaaS virtual machines to boot under customer-controlled keys and policies which you can audit the usage through the key vault.

  While Storage Service Encryption (SSE) does not offer any support for managed keys for managed disks, as of now.

  Note: Both of these encryptions are REST technologies.

  Best regards,
  Leon

  ---

  Blog: https://thesystemcenterblog.com  LinkedIn:   

  • Proposed as answer by vikranth s Tuesday, June 12, 2018 3:02 PM
  • Marked as answer by Landry Sufo Tuesday, June 12, 2018 8:02 PM

  Tuesday, June 12, 2018 1:54 PM
• 

  

  0

  Sign in to vote

  In addition to Leon,

  See below FAQs:

  Q:How does the Storage Service encryption (SSE)different from Azure Disk Encryption?

  A: Azure Disk Encryption is used to encrypt OS and data disks in IaaS VMs. For more information, see the Storage security guide.

  Q:What if I enable Azure Disk Encryptionand SSEon my data disks?

  A: This will work seamlessly. Both methods will encrypt your data.

  For more information refer:

  https://docs.microsoft.com/en-us/azure/storage/common/storage-service-encryption

  https://docs.microsoft.com/en-in/azure/security/azure-security-disk-encryption

  
  

  • Proposed as answer by vikranth s Tuesday, June 12, 2018 3:02 PM

  Tuesday, June 12, 2018 3:02 PM
• 

  

  0

  Sign in to vote

  Thanks for the clarifications

  Tuesday, June 12, 2018 8:03 PM
• 

  

  0

  Sign in to vote

  Thanks for the clarifications

  Tuesday, June 12, 2018 8:03 PM
• 

  

  0

  Sign in to vote

  We are glad to hear that your query is clarified.

  Wednesday, June 13, 2018 8:16 PM