The new Azure Disk Encryption feature was introduced into Public Preview last November. It allows for Virtual Machines (VMs) hosted within Azure to be encrypted using keys and policies controlled by Azure Key Vault.

Here’s video session from AzureCon 2015 on Encryption and key management with Azure Key Vault:

The Azure Disk Encryption works for both Windows and Linux VMs, and utilizes Azure Key Vault to allow you to safeguard, manage and audit encryption key usage. All data within the VM disks is encrypted at rest using industry standard encryption within Azure Storage.

The Linus disk encryption is based on dm-crypt, while the Windows disk encryption is based on Microsoft BitLocker Drive Encryption.

Microsoft MVP

Chris is the Founder of and a Microsoft MVP in Azure & IoT with 20 years of experience designing and building Cloud & Enterprise systems. He is also a Microsoft Certified: Azure Solutions Architect, developer, Microsoft Certified Trainer (MCT), and Cloud Advocate. He has a passion for technology and sharing what he learns with others to help enable them to learn faster and be more productive.