In this episode, Sara spoke with her colleague and the lead developer of AxonIQ Cloud, Yvonne Ceelie, about protecting sensitive data in event-sourced applications.
They discuss what sensitive data is and why it can be challenging to protect it in distributed, message-driven systems. They talk about ways to encrypt your data, such as crypto shredding and where the data is stored.
Yvonne introduces the Data Protection Module using Axon Framework. She discusses how the Crypto Engine can be implemented, while also covering the JPACryptoEngine and the VaultCryptoEngine. She explains how the “right-to-be-forgotten requirements” in Event-Driven systems can be met. And lastly, Yvonne explains how to use the DP Module without Axon Framework, and the necessary annotations.
This talk highlights Yvonne’s blog, “Protect sensitive data in an Event-Sourced Application.” You can read her blog and look at her code samples here.
You can connect with Yvonne on LinkedIn.
Connect with me on Twitter @SaraTorrey and on LinkedIn.
For more information about us visit axoniq.io