Encrypt and Protect Data on Confluent Cloud

Learn how to encrypt and protect your data on Confluent Cloud. This includes securing data at rest and data in motion, to help ensure that your sensitive information is safeguarded against unauthorized access.

Manage data in transit with TLS

Transport Layer Security (TLS) is a protocol that provides secure communication over a network. TLS is used to secure data in transit, such as data that is transmitted between services or applications. In Confluent Cloud, TLS is used to secure data in transit between your Confluent Cloud resources and your external systems.

Learn how to manage TLS to secure your data in transit on Confluent Cloud.

See Manage Data in Transit with TLS on Confluent Cloud.

Encrypt data at rest using self-managed encryption keys

Learn how to use self-managed encryption keys to secure your data stored on Confluent Cloud clusters.

See Protect Data at Rest Using Self-managed Encryption Keys on Confluent Cloud.

Protect sensitive data using client-side field level encryption (CSFLE)

Implement CSFLE to add an extra layer of security for specific data fields, to help ensure that even if data is accessed without authorization, it remains unreadable without the decryption keys.

See Protect Sensitive Data Using Client-Side Field Level Encryption on Confluent Cloud.

Related content

• Confluent Cloud Security Controls (whitepaper)
• Confluent Cloud Security (Confluent Developer course)