Inquiry Regarding Data Encryption in Logstream Data Replication
Hi team, In a data replication using Logstream, could you indicate if the information is sent encrypted to the Qlik server from OnPremise and if it is also encrypted when it is replicated from the server to the destinations, in this case S3 and Aurora, and if it is only encrypts the channel through which it is sent.
The Replicate users guide includes a detailed information about different security aspects when working with Replicate product - following is a link to the documentation: https://help.qlik.com/en-US/replicate/November2023/Content/Replicate/Main/Security/replicate_securit... As indicated in the subsection (under the chapter of the link above ) 'Securing connections to endpoints' (https://help.qlik.com/en-US/replicate/November2023/Content/Replicate/Main/Security/Secure_Connection...) : "Qlik does not implement the network protocol (see important exceptions below) and for this reason, Qlik Replicate generally relies on the vendor of the source or target endpoint to offer encryption. When setting up endpoint connections, the user is able to specify any connection properties required for the use of encryption; these properties are, invariably, vendor-specific properties. In some cases, use of encryption requires system-level settings (such as adding a certificate to the machine trust store) which are outside of the scope of Qlik Replicate. Users are referred to the operation manual of the source or target endpoint for details on how to set up encrypted client communication with the server." For further information please refer to the above sections in the documentation.
Is your replication going thru a VPN? I'd really only worry if replication is going over the public internet (unsure how that'd even happen) or over Telco circuits thru countries you don't trust.
