Chapter 10

Cryptography in Azure

After completing this chapter, you will be able to:

  • Secure cryptographic keys

  • Use Azure Key Vault securely

  • Understand the differences between Azure Key Vault and Managed HSM

  • Use cryptographic controls to securely protect data at rest

  • Create code that is crypto-agile

  • Use the Microsoft Data Encryption SDK

  • Use cryptography in various Azure services

  • Understand the basics of Always Encrypted in Azure SQL DB and Cosmos DB

  • Use, enforce, and test TLS connections for compliance

Cryptography comes from the Greek words for “secret writing.” It refers to a branch of information security that uses mathematical algorithms to provide security capabilities such as secrecy, integrity, and authentication.

This chapter is expansive, ...

Get Designing and Developing Secure Azure Solutions now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.