Question
4
Replies
160
Views
Scotiabank
Posted: January 24, 2020
Last activity: July 6, 2020
Difference between Application and System data encryption
We are using Pega 8.3.
Under System -> Settings -> Data Encryption, there are two options, "Application Data Encryption" and "System Data Encryption". What's the difference between the two? I tried to find it in the documentation provided, didn't find a proper answer.
We want to use 'Attribute Based Access Control' to encrypt some properties, so which Data Encryption configuration should we update?
Regards,
Sandeep
By default, the platform applies certain encryptions standards while storing the data to DB. However to apply additional layers of encryption OR use customer encryption types, one can use Data Encryption options. System data like passwords use System Data Encryption & Application Data refers to the case data.
As you are requirement is about encryption some (individual) properties, you need to create an access control policy with PropertyEncrypt action.
Would recommend checking the below articles in detail.
https://community.pega.com/knowledgebase/articles/security/encryption-pega-platform
https://community.pega.com/knowledgebase/articles/security/encrypting-individual-properties-pega-platform
Let me know if that helps!