Streamkap provides data encryption options that you can use to meet strict data management requirements. The certificates that Streamkap uses for encryption must be renewed every 12 months - maintenance window will be arranged during this renewal process

Encryption in transit

Streamkap uses TLS 1.2, which encrypts data in transit. Streamkap brokers uses public AWS Certificate Manager certificates. Therefore, any truststore that trusts Amazon Trust Services also trusts the certificates of Streamkap brokers.

Encryption at rest

Streamkap always encrypts your data at rest. Streamkap uses by default EBS and S3 Encryption at rest.

Bring Your Own Keys - (BYOK)

Streamkap integrates with AWS Key Management Service (KMS) to offer transparent server-side encryption for your Kafka and Flink Cluster.