Data protection (encryption at rest) is not yet implemented in BitzOrcas. Sensitive data currently relies on SQL Server’s built-in encryption capabilities and TLS for transport security.
Current protection measures
| Layer | Mechanism |
|---|---|
| Transport | TLS 1.2+ (HTTPS) |
| Database connection | Encrypted (TLS) |
| API keys | SHA-256 hashed at startup |
| HMAC secrets | Only hash stored inNonceStore |
| Delegation tokens | Time-limited + revocable |
| JWT | Symmetric key (minimum 32 chars) |
Planned enhancements
| Feature | Description |
|---|---|
| Field-level encryption | Encrypt sensitive PII fields at rest |
| ASP.NET Core Data Protection | Key management for protecting payloads |
| Column encryption | SQL Server Always Encrypted for specific columns |
| Key rotation | Automated key rotation with grace period |
Configuration (planned)
{ "DataProtection": { "Keys": { "StoragePath": "/var/keys/dataprotection", "RotationPeriod": "90.00:00:00" }, "FieldEncryption": { "Enabled": true, "Fields": ["Email", "PhoneNumber", "IdNumber"] } }}See also
- Production checklist — Security deployment guide