The new Azure Disk Encryption feature was introduced into Public Preview last November. It allows for Virtual Machines (VMs) hosted within Azure to be encrypted using keys and policies controlled by Azure Key Vault.
Here’s video session from AzureCon 2015 on Encryption and key management with Azure Key Vault:
The Azure Disk Encryption works for both Windows and Linux VMs, and utilizes Azure Key Vault to allow you to safeguard, manage and audit encryption key usage. All data within the VM disks is encrypted at rest using industry standard encryption within Azure Storage.
The Linus disk encryption is based on dm-crypt, while the Windows disk encryption is based on Microsoft BitLocker Drive Encryption.
About the Author
Chris Pietschmann
Chris Pietschmann is a Microsoft MVP, HashiCorp Ambassador, and Microsoft Certified Trainer (MCT) with 20+ years of experience designing and building Cloud & Enterprise systems. He has worked with companies of all sizes from startups to large enterprises. He has a passion for technology and sharing what he learns with others to help enable them to learn faster and be more productive.
Terraform: If/Else Conditional Resource and Module Deployment
Azure Functions: Extend Execution Timeout Past 5 Minutes
IPv4 Address CIDR Range Reference and Calculator
Terraform: Import Existing Azure Resource Group
Terraform: Use for_each to deploy multiple resources
lol, smile dude :p