What is data at rest encryption

Anyone can explain what the above meant?

Some security chap from one of our customer's organization asked &
it's not too nice to ask the customer to clarify
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Alexandre TakacsCTOCommented:
Well to put is basically this expression refers to the data (whatever it is) in storage, as opposed to when in transit and/or being processed.

In other words if someone had access to said data store (say a database) they could not do anything with it as it would only contain encrypted information.
DAR is "data lying still, not being moved through the means of networks". We can encrypt data in transit by encrypting the network traffic and encrypt DAR by encrypting the hard drive/partition/USB drive/Database/... whatever you might have.
Mr KnackeredCommented:
Data at rest encryption basically means protecting data that's not moving through networks.  The protection in this case is offered via encryption.

The easiest way to answer this question is to explain what "data at rest" means.

Data at rest refers to data that is not "moving."  For example, information on your laptop is considered data at rest.  Sure, your laptop is a mobile device, so it's natural that the laptop and its content will be moving at some point.  However, as long as the data is not moving off the laptop's hard disk drive, it's considered data at rest.

If you copy the data to a USB memory stick, then you've got two sets of data at rest: one on the laptop's hard disk, one on the USB memory stick.  

Conversely, data moving through networks are not considered to be data at rest.  For example, if you send an e-mail, that's not data at rest.  If the e-mail is received and archived, then it's data at rest.

As you can see from the above example, whether data is at rest or not depends on what that data is doing.

To read more follow the link below:


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.