Data encryption
Kontent.ai protects your content at several levels. When you edit your content in Kontent.ai, your data is encrypted in transit. Once your work is done, Kontent.ai encrypts your data at rest. The encryption is compliant with NIST 800-57, which provides guidelines on cryptographic key management.
Encryption in transit
Access to Kontent.ai resources by end users is encrypted in transit with HTTPS transport layer security (TLS). We support TLS 1.3 and TLS 1.2 with strong cipher suites to protect from man-in-the-middle attacks. Support for older protocols and cipher suites is disabled due to known security vulnerabilities. All ciphers support perfect forward secrecy to ensure that even intercepted traffic cannot be decrypted in the future. List of supported ciphers:- TLS_AES_128_GCM_SHA256
- TLS_AES_256_GCM_SHA384
- TLS_CHACHA20_POLY1305_SHA256
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256