Admin Console: Encryption Key Management
The Admin Console allows realm admins to manage the data security features of their realm.
How Quick Base protects customer data
- Data at rest: Quick Base protects your data at rest using envelope encryption with AES-256 encryption keys. Each app receives a unique data key. The app's data key is used to encrypt the app and its data at rest. The master key is used to encrypt the data key. Quick Base never stores unencrypted data to disk.
- Data in transit: Quick Base encrypts data in transit using SSL / TLS.
By default, Quick Base uses the a global master key, which is shared among multiple realms and never leaves the key management service (KMS).
Get a realm-specific master key
For more control over your keys, you can request your own realm-specific master key. To request a realm-specific master key, contact Quick Base Support and open a support ticket.
Use your own encryption key
Quick Base allows you to bring your own encryption key (BYOK) that’s hosted in your AWS Key Management System (KMS). To use your own key, contact Quick Base Support and open a support ticket.
Rotate your realm-specific master key on your own schedule
If realm-specific master keys are enabled for your realm, click Encryption to open the Encryption page.
- To rotate your master key so that it is replaced with a new master key, click Create New Encryption Key. Quick Base updates the table to show your new key as the current master key.
© 1999-2019 QuickBase, Inc. All rights reserved. Legal Notices.