Best practice for encrypting data in CRM 2013 (other than the fields it already encrypts) RRS feed

  • Question

  • I know CRM 2013 can encrypt some values by default, but if I want to store data in custom fields then encrypt that, what's the best practice?  I'm working on a project to do this through a javascript action that when triggered from a form would reference a web service to decrypt values and a plugin to encrypt on Update/Create, but I hoped there might be a simpler or more suggested way to do this.


    Tuesday, February 17, 2015 7:42 PM

All replies

  • At what level are you encrypting?  CRM 2013 supports encrypted databases if you're worried about the data at rest.

    In transit, you should be using SSL to encrypt the entire process, not just individual data.

    you can use field-level security to not display certain fields to end users of a certain type if you're worried about that.  It's even more secure than anything you could do with JS, as the data is never passed over the wire.

    Is there something those don't solve?

    The postings on this site are solely my own and do not represent or constitute Hitachi Solutions' positions, views, strategies or opinions.

    Tuesday, February 17, 2015 9:59 PM