In this episode, I spoke with my colleague and the lead developer of AxonIQ Cloud, Yvonne Ceelie, about protecting sensitive data in event-sourced applications.
We discussed what sensitive data is and why it can be challenging to protect it in distributed, message-driven systems. We talked about ways of encrypting your data, such as Crypto Shredding and where the data is stored.
Yvonne introduced the Data Protection Module using Axon Framework. We talked about Crypto Engine and how it can be implemented. We also covered the JPACryptoEngine and the VaultCryptoEngine in our talk. We discussed how we can meet the “right-to-be-forgotten requirements” in Event-Driven systems. And lastly, Yvonne explained how to use the DP Module without Axon Framework, and the necessary annotations.
This talk highlighted Yvonne’s blog, “Protect sensitive data in an Event-Sourced Application”. You can read her blog and look at her code samples here.
You can connect with Yvonne on LinkedIn.
Connect with me on Twitter @SaraTorrey and on LinkedIn.
For more information about us visit axoniq.io