Encryption methods
Encryption is a defensive mechanism that helps protect the privacy of your data stored in Google Cloud. Using encryption ensures that the data stored in Google Cloud is protected against malicious attacks or breaches which might lead to compromising the security of your entire project or organization.
To know more about how encryption is handled in Google Cloud, see Encryption.
Integration Connectors is a regional service and the infrastructure that runs your connections is located in the associated provisioned regions. To provision a new region, in the console, go to Integration Connectors
Compliant with Google Cloud's security standards for storing customer data, Integration Connectors automatically encrypts the data using one of the following data encryption methods:
Google-managed encryption keys
By default, Integration Connectors automatically encrypts data at rest using Google-managed encryption keys. These encryption keys are handled by Google and are encrypted using the Advanced Encryption Standard (AES) algorithm, AES-256. You don't have to perform any actions or configuration changes to use Google-managed encryption keys for Integration Connectors. For more information, see Default encryption at rest.
Customer-managed encryption key
In addition to the standard, Google-managed encryption method, you can also use Cloud Key Management Service (KMS) or Customer-managed encryption keys to encrypt and decrypt your data at rest. These encryption keys are created, managed, and owned by you. For more information, see Customer-managed encryption keys.
Encrypted data
The following table lists the data encrypted in Integration Connectors:
| Resource | Encrypted data |
|---|---|
| Incoming events from your backend to the connection | Event payload |
| Connections | Connection execution metadata |