Overview

Search Guard Encryption at Rest is designed to provide full data protection for Elasticsearch indices and snapshots. It encrypts all Lucene data files, snapshots, and Elasticsearch translog, ensuring sensitive information remains secure even when stored on disk in public cloud environments. Encryption keys are held exclusively in secure memory on cluster nodes and never stored on disk, giving users complete authority over data access and enabling secure data destruction through simple key removal. Encryption operates at the core Lucene level of Elasticsearch, making it impossible to circumvent, thus protecting data from the inside out.

Features

• Full Data Protection at Rest: Encrypts all Lucene data files, snapshots, and Elasticsearch translog, ensuring sensitive information remains secure.
• Your Keys, Your Control: Encryption keys are held exclusively in secure memory on cluster nodes and never stored on disk, giving users complete authority over data access.
• Security Without Compromise: Integrates effortlessly with Elasticsearch while maintaining full compatibility with critical features like vector search and k-NN.
• Compliance: Meets stringent requirements of PCI, ISO, SOX, and similar regulations with advanced encryption capabilities.
• Global Security Standards: Designed to comply with European Cyber Resilience Act and NIST SP 800-171 framework.
• Easy Implementation: Installs seamlessly within Docker containers, Kubernetes, or on-premise environments, securing Elasticsearch data with minimal configuration changes.

Benefits

• Enhanced Data Protection: Ensures sensitive information remains secure even when stored on disk in public cloud environments.
• Complete Authority Over Data Access: Encryption keys are held exclusively in secure memory on cluster nodes, enabling secure data destruction through simple key removal.
• Robust Security: Operates at the core Lucene level of Elasticsearch, making it impossible to circumvent.
• Compliance Confidence: Meets stringent requirements of PCI, ISO, SOX, and similar regulations, providing essential documentation and security controls needed for compliance audits.
• Global Standards Alignment: Complies with European Cyber Resilience Act and NIST SP 800-171 framework, positioning users for seamless compliance with global regulations.
• Ease of Use: Installs seamlessly within Docker containers, Kubernetes, or on-premise environments, securing Elasticsearch data with minimal configuration changes.