- Utilizing XQ all of the encryption occurs at the edge as such all data is encrypted directly at the edge before it is transmitted. Alternatively, AWS encrypts all data as it is ingested by their infrastructure.
- Additionally utilizing XQ creates a key & data storage separation as such if your AWS credentials were compromised without the usage of XQ this can result in complete data exfiltration as the hacker will be able to easily decrypt and access all data stored on AWS. Utilizing XQ the keys are stored separately from the AWS infrastructure therefore if the hacker compromises your AWS account they would still have the large amount of overhead required to uniquely decrypt each individual data item as they would only be able to exfiltrate the XQ encrypted content.
How Does Vault Differ From Encryption Already Available Through AWS and Azure?
Updated on February 26, 2024