Skip to content

Commit 6472c1b

Browse files
author
Jill Grant
authored
Merge pull request #289087 from msmbaldwin/ade-misc
Revising encryption model table
2 parents bbada40 + 0da35e9 commit 6472c1b

File tree

1 file changed

+99
-99
lines changed

1 file changed

+99
-99
lines changed

articles/security/fundamentals/encryption-models.md

Lines changed: 99 additions & 99 deletions
Original file line numberDiff line numberDiff line change
@@ -132,105 +132,105 @@ When server-side encryption using customer-managed keys in customer-controlled h
132132

133133
The Azure services that support each encryption model:
134134

135-
| Product, Feature, or Service | Server-Side Using Service-Managed Key | Server-Side Using Customer-Managed Key | Client-Side Using Client-Managed Key |
136-
| --- | --- | --- | --- |
137-
| **AI and Machine Learning** | | | |
138-
| Azure AI Search | Yes | Yes | - |
139-
| Azure AI services | Yes | Yes, including Managed HSM | - |
140-
| Azure Machine Learning | Yes | Yes | - |
141-
| Content Moderator | Yes | Yes, including Managed HSM | - |
142-
| Face | Yes | Yes, including Managed HSM | - |
143-
| Language Understanding | Yes | Yes, including Managed HSM | - |
144-
| Azure OpenAI | Yes | Yes, including Managed HSM | - |
145-
| Personalizer | Yes | Yes, including Managed HSM | - |
146-
| QnA Maker | Yes | Yes, including Managed HSM | - |
147-
| Speech Services | Yes | Yes, including Managed HSM | - |
148-
| Translator Text | Yes | Yes, including Managed HSM | - |
149-
| [Power Platform](https://www.microsoft.com/power-platform) | Yes | Yes, including Managed HSM | - |
150-
| [Dataverse](https://www.microsoft.com/power-platform/dataverse) | Yes | Yes, including Managed HSM | - |
151-
| [Dynamics 365](https://www.microsoft.com/dynamics-365) | Yes | Yes, including Managed HSM | - |
152-
| **Analytics** | | | |
153-
| Azure Stream Analytics | Yes | Yes\*\*, including Managed HSM | - |
154-
| Event Hubs | Yes | Yes | - |
155-
| Functions | Yes | Yes | - |
156-
| Azure Analysis Services | Yes | - | - |
157-
| Azure Data Catalog | Yes | - | - |
158-
| Azure HDInsight | Yes | Yes | - |
159-
| Azure Monitor Application Insights | Yes | Yes | - |
160-
| Azure Monitor Log Analytics | Yes | Yes, including Managed HSM | - |
161-
| Azure Data Explorer | Yes | Yes | - |
162-
| Azure Data Factory | Yes | Yes, including Managed HSM | - |
163-
| Azure Data Lake Store | Yes | Yes, RSA 2048-bit | - |
164-
| **Containers** | | | |
165-
| Azure Kubernetes Service | Yes | Yes, including Managed HSM | - |
166-
| Container Instances | Yes | Yes | - |
167-
| Container Registry | Yes | Yes | - |
168-
| **Compute** | | | |
169-
| Virtual Machines | Yes | Yes, including Managed HSM | - |
170-
| Virtual Machine Scale Set | Yes | Yes, including Managed HSM | - |
171-
| SAP HANA | Yes | Yes | - |
172-
| App Service | Yes | Yes\*\*, including Managed HSM | - |
173-
| Automation | Yes | Yes | - |
174-
| Azure Functions | Yes | Yes\*\*, including Managed HSM | - |
175-
| Azure portal | Yes | Yes\*\*, including Managed HSM | - |
176-
| Azure VMware Solution | Yes | Yes, including Managed HSM | - |
177-
| Logic Apps | Yes | Yes | - |
178-
| Azure-managed applications | Yes | Yes\*\*, including Managed HSM | - |
179-
| Service Bus | Yes | Yes | - |
180-
| Site Recovery | Yes | Yes | - |
181-
| **Databases** | | | |
182-
| SQL Server on Virtual Machines | Yes | Yes | Yes |
183-
| Azure SQL Database | Yes | Yes, RSA 3072-bit, including Managed HSM | Yes |
184-
| Azure SQL Managed Instance | Yes | Yes, RSA 3072-bit, including Managed HSM | Yes |
185-
| Azure SQL Database for MariaDB | Yes | - | - |
186-
| Azure SQL Database for MySQL | Yes | Yes, including Managed HSM | - |
187-
| Azure SQL Database for PostgreSQL | Yes | Yes, including Managed HSM | - |
188-
| Azure Synapse Analytics (dedicated SQL pool (formerly SQL DW) only) | Yes | Yes, RSA 3072-bit, including Managed HSM | - |
189-
| SQL Server Stretch Database | Yes | Yes, RSA 3072-bit | Yes |
190-
| Table Storage | Yes | Yes | Yes |
191-
| Azure Cosmos DB | Yes ([learn more](/azure/cosmos-db/database-security?tabs=sql-api)) | Yes, including Managed HSM ([learn more](/azure/cosmos-db/how-to-setup-cmk) and [learn more](/azure/cosmos-db/how-to-setup-customer-managed-keys-mhsm)) | - |
192-
| Azure Databricks | Yes | Yes, including Managed HSM | - |
193-
| Azure Database Migration Service | Yes | N/A\* | - |
194-
| **Identity** | | | |
195-
| Microsoft Entra ID | Yes | - | - |
196-
| Microsoft Entra Domain Services | Yes | Yes | - |
197-
| **Integration** | | | |
198-
| Service Bus | Yes | Yes | - |
199-
| Event Grid | Yes | - | - |
200-
| API Management | Yes | - | - |
201-
| **IoT Services** | | | |
202-
| IoT Hub | Yes | Yes | Yes |
203-
| IoT Hub Device Provisioning | Yes | Yes | - |
204-
| **Management and Governance** | | | |
205-
| Azure Managed Grafana | Yes | - | N/A |
206-
| Azure Site Recovery | Yes | - | - |
207-
| Azure Migrate | Yes | Yes | - |
208-
| **Media** | | | |
209-
| Media Services | Yes | Yes | Yes |
210-
| **Security** | | | |
211-
| Microsoft Defender for IoT | Yes | Yes | - |
212-
| Microsoft Sentinel | Yes | Yes, including Managed HSM | - |
213-
| **Storage** | | | |
214-
| Blob Storage | Yes | Yes, including Managed HSM | Yes |
215-
| Premium Blob Storage | Yes | Yes, including Managed HSM | Yes |
216-
| Disk Storage | Yes | Yes, including Managed HSM | - |
217-
| Ultra Disk Storage | Yes | Yes, including Managed HSM | - |
218-
| Managed Disk Storage | Yes | Yes, including Managed HSM | - |
219-
| File Storage | Yes | Yes, including Managed HSM | - |
220-
| File Premium Storage | Yes | Yes, including Managed HSM | - |
221-
| File Sync | Yes | Yes, including Managed HSM | - |
222-
| Queue Storage | Yes | Yes, including Managed HSM | Yes |
223-
| Data Lake Storage Gen2 | Yes | Yes, including Managed HSM | Yes |
224-
| Avere vFXT | Yes | - | - |
225-
| Azure Cache for Redis | Yes | Yes\*\*\*, including Managed HSM | - |
226-
| Azure NetApp Files | Yes | Yes, including Managed HSM | Yes |
227-
| Archive Storage | Yes | Yes | - |
228-
| StorSimple | Yes | Yes | Yes |
229-
| Azure Backup | Yes | Yes, including Managed HSM | Yes |
230-
| Data Box | Yes | - | Yes |
231-
| Azure Stack Edge | Yes | Yes | - |
232-
| **Other** | | | |
233-
| Azure Data Manager for Energy | Yes | Yes | Yes |
135+
| Product, Feature, or Service | Server-Side Using Customer-Managed Key | Documentation |
136+
| --- | --- | --- |
137+
| **AI and Machine Learning** | | |
138+
| [Azure AI Search](/azure/search/) | Yes | |
139+
| [Azure AI services](/azure/cognitive-services/) | Yes, including Managed HSM | |
140+
| [Azure Machine Learning](/azure/machine-learning/) | Yes | |
141+
| [Content Moderator](/azure/cognitive-services/content-moderator/) | Yes, including Managed HSM | |
142+
| [Face](/azure/cognitive-services/face/) | Yes, including Managed HSM | |
143+
| [Language Understanding](/azure/cognitive-services/luis/) | Yes, including Managed HSM | |
144+
| [Azure OpenAI](/azure/ai-services/openai/) | Yes, including Managed HSM | |
145+
| [Personalizer](/azure/cognitive-services/personalizer/) | Yes, including Managed HSM | |
146+
| [QnA Maker](/azure/cognitive-services/qnamaker/) | Yes, including Managed HSM | |
147+
| [Speech Services](/azure/cognitive-services/speech-service/) | Yes, including Managed HSM | |
148+
| [Translator Text](/azure/cognitive-services/translator/) | Yes, including Managed HSM | |
149+
| [Power Platform](/power-platform/) | Yes, including Managed HSM | |
150+
| [Dataverse](/powerapps/maker/data-platform/) | Yes, including Managed HSM | |
151+
| [Dynamics 365](/dynamics365/) | Yes, including Managed HSM | |
152+
| **Analytics** | | |
153+
| [Azure Stream Analytics](/azure/stream-analytics/) | Yes\*\*, including Managed HSM | |
154+
| [Event Hubs](/azure/event-hubs/) | Yes | |
155+
| [Functions](/azure/azure-functions/) | Yes | |
156+
| [Azure Analysis Services](/azure/analysis-services/) | - | |
157+
| [Azure Data Catalog](/azure/data-catalog/) | - | |
158+
| [Azure HDInsight](/azure/hdinsight/) | Yes | |
159+
| [Azure Monitor Application Insights](/azure/azure-monitor/app/app-insights-overview) | Yes | |
160+
| [Azure Monitor Log Analytics](/azure/azure-monitor/logs/log-analytics-overview) | Yes, including Managed HSM | |
161+
| [Azure Data Explorer](/azure/data-explorer/) | Yes | |
162+
| [Azure Data Factory](/azure/data-factory/) | Yes, including Managed HSM | |
163+
| [Azure Data Lake Store](/azure/data-lake-store/) | Yes, RSA 2048-bit | |
164+
| **Containers** | | |
165+
| [Azure Kubernetes Service](/azure/aks/) | Yes, including Managed HSM | |
166+
| [Container Instances](/azure/container-instances/) | Yes | |
167+
| [Container Registry](/azure/container-registry/) | Yes | |
168+
| **Compute** | | |
169+
| [Virtual Machines](/azure/virtual-machines/) | Yes, including Managed HSM | |
170+
| [Virtual Machine Scale Set](/azure/virtual-machine-scale-sets/) | Yes, including Managed HSM | |
171+
| [SAP HANA](/azure/sap/large-instances/hana-overview-architecture) | Yes | |
172+
| [App Service](/azure/app-service/) | Yes\*\*, including Managed HSM | |
173+
| [Automation](/azure/automation/) | Yes | |
174+
| [Azure Functions](/azure/azure-functions/) | Yes\*\*, including Managed HSM | |
175+
| [Azure portal](/azure/azure-portal/) | Yes\*\*, including Managed HSM | |
176+
| [Azure VMware Solution](/azure/azure-vmware/) | Yes, including Managed HSM | |
177+
| [Logic Apps](/azure/logic-apps/) | Yes | |
178+
| [Azure-managed applications](/azure/azure-resource-manager/managed-applications/overview) | Yes\*\*, including Managed HSM | |
179+
| [Service Bus](/azure/service-bus-messaging/) | Yes | |
180+
| [Site Recovery](/azure/site-recovery/) | Yes | |
181+
| **Databases** | | |
182+
| [SQL Server on Virtual Machines](/azure/virtual-machines/windows/sql/) | Yes | |
183+
| [Azure SQL Database](/azure/azure-sql/database/) | Yes, RSA 3072-bit, including Managed HSM | |
184+
| [Azure SQL Managed Instance](/azure/azure-sql/managed-instance/) | Yes, RSA 3072-bit, including Managed HSM | |
185+
| [Azure Database for MariaDB](/azure/mariadb/) | - | |
186+
| [Azure Database for MySQL](/azure/mysql/) | Yes, including Managed HSM | |
187+
| [Azure Database for PostgreSQL](/azure/postgresql/) | Yes, including Managed HSM | |
188+
| [Azure Synapse Analytics (dedicated SQL pool (formerly SQL DW) only)](/azure/synapse-analytics/) | Yes, RSA 3072-bit, including Managed HSM | |
189+
| [SQL Server Stretch Database](/sql/sql-server/stretch-database/) | Yes, RSA 3072-bit | |
190+
| [Table Storage](/azure/storage/tables/) | Yes | |
191+
| [Azure Cosmos DB](/azure/cosmos-db/) | Yes, including Managed HSM | [Configure CMKs (Key Vault)](/azure/cosmos-db/how-to-setup-cmk) and [Configure CMKs (Managed HSM)](/azure/cosmos-db/how-to-setup-customer-managed-keys-mhsm) |
192+
| [Azure Databricks](/azure/databricks/) | Yes, including Managed HSM | |
193+
| [Azure Database Migration Service](/azure/dms/) | N/A\* | |
194+
| **Identity** | | |
195+
| [Microsoft Entra ID](/azure/active-directory/) | - | |
196+
| [Microsoft Entra Domain Services](/azure/active-directory-domain-services/) | Yes | |
197+
| **Integration** | | |
198+
| [Service Bus](/azure/service-bus-messaging/) | Yes | |
199+
| [Event Grid](/azure/event-grid/) | - | |
200+
| [API Management](/azure/api-management/) | - | |
201+
| **IoT Services** | | |
202+
| [IoT Hub](/azure/iot-hub/) | Yes | |
203+
| [IoT Hub Device Provisioning](/azure/iot-dps/) | Yes | |
204+
| **Management and Governance** | | |
205+
| [Azure Managed Grafana](/azure/managed-grafana/) | - | |
206+
| [Azure Site Recovery](/azure/site-recovery/) | - | |
207+
| [Azure Migrate](/azure/migrate/) | Yes | |
208+
| **Media** | | |
209+
| [Media Services](/azure/media-services/) | Yes | |
210+
| **Security** | | |
211+
| [Microsoft Defender for IoT](/azure/defender-for-iot/) | Yes | |
212+
| [Microsoft Sentinel](/azure/sentinel/) | Yes, including Managed HSM | |
213+
| **Storage** | | |
214+
| [Blob Storage](/azure/storage/blobs/) | Yes, including Managed HSM | |
215+
| [Premium Blob Storage](/azure/storage/blobs/) | Yes, including Managed HSM | |
216+
| [Disk Storage](/azure/virtual-machines/disks-types/) | Yes, including Managed HSM | |
217+
| [Ultra Disk Storage](/azure/virtual-machines/disks-types/) | Yes, including Managed HSM | |
218+
| [Managed Disk Storage](/azure/virtual-machines/disks-types/) | Yes, including Managed HSM | |
219+
| [File Storage](/azure/storage/files/) | Yes, including Managed HSM | |
220+
| [File Premium Storage](/azure/storage/files/) | Yes, including Managed HSM | |
221+
| [File Sync](/azure/storage/file-sync/file-sync-introduction) | Yes, including Managed HSM | |
222+
| [Queue Storage](/azure/storage/queues/) | Yes, including Managed HSM | |
223+
| [Data Lake Storage Gen2](/azure/storage/blobs/data-lake-storage-introduction/) | Yes, including Managed HSM | |
224+
| [Avere vFXT](/azure/avere-vfxt/) | - | |
225+
| [Azure Cache for Redis](/azure/azure-cache-for-redis/) | Yes\*\*\*, including Managed HSM | |
226+
| [Azure NetApp Files](/azure/azure-netapp-files/) | Yes, including Managed HSM | |
227+
| [Archive Storage](/azure/storage/blobs/archive-blob) | Yes | |
228+
| [StorSimple](/azure/storsimple/) | Yes | |
229+
| [Azure Backup](/azure/backup/) | Yes, including Managed HSM | |
230+
| [Data Box](/azure/databox/) | - | |
231+
| [Azure Stack Edge](/azure/databox-online/azure-stack-edge-overview/) | Yes | |
232+
| **Other** | | |
233+
| [Azure Data Manager for Energy](/azure/energy-data-services/overview-microsoft-energy-data-services) | Yes | |
234234

235235
\* This service doesn't persist data. Transient caches, if any, are encrypted with a Microsoft key.
236236

0 commit comments

Comments
 (0)