open-vault/website/pages/guides/encryption/index.mdx

---
layout: guides
page_title: Encryption as a Service - Guides
sidebar_title: Encryption as a Service
description: |-
  The transit secrets engine handles cryptographic functions on data in-transit.
  Vault doesn't store the data sent to the secrets engine. It can also be viewed
  as "cryptography as a service" or "encryption as a service".
---

# Encryption as a Service

Vault provides Encryption as a Service (EaaS) to enable security teams to
fortify data during transit and at rest. So even if an intrusion occurs, your
data is encrypted and the attacker would never get a hold of the raw data.

This guide walks you through Encryption as a Service topics.

- [Encryption as a Service](/guides/encryption/transit) guide walks you
  through the usage of the `transit` secrets engine in Vault.
  Read this guide first before proceeding to the [Transit Secrets
  Re-wrapping](/guides/encryption/transit-rewrap) guide or [Java Application
  Demo](/guides/encryption/spring-demo) guide.

- [Java Application Demo](/guides/encryption/spring-demo) guide walks
  through a sample application which relies on Vault to generate database
  credentials as well as encrypting sensitive data. This guide is for anyone who
  wishes to reproduce the demo introduced in
  the [Manage secrets, access, and encryption in the public cloud with Vault](https://www.hashicorp.com/resources/solutions-engineering-webinar-series-episode-2-vault)
  webinar.

- [Transit Secrets Re-wrapping](/guides/encryption/transit-rewrap) guide
  demonstrates one possible way to re-wrap data after rotating an encryption key
  in the transit engine in Vault.
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			`---`
			`layout: guides`
			`page_title: Encryption as a Service - Guides`
			`sidebar_title: Encryption as a Service`
			`description: \|-`
			`The transit secrets engine handles cryptographic functions on data in-transit.`
			`Vault doesn't store the data sent to the secrets engine. It can also be viewed`
			`as "cryptography as a service" or "encryption as a service".`
			`---`

			`# Encryption as a Service`

			`Vault provides Encryption as a Service (EaaS) to enable security teams to`
			`fortify data during transit and at rest. So even if an intrusion occurs, your`
			`data is encrypted and the attacker would never get a hold of the raw data.`

			`This guide walks you through Encryption as a Service topics.`

[website] Link Cleaning (#8205) * update dependencies * remove hard-coded vaultproject.io on local links * remove 'index.html' from internal links * remove '.html' at end of internal links * manual review cleanup Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com> 2020-01-22 20:05:41 +00:00			`- [Encryption as a Service](/guides/encryption/transit) guide walks you`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			through the usage of the `transit` secrets engine in Vault.
			`Read this guide first before proceeding to the [Transit Secrets`
[website] Link Cleaning (#8205) * update dependencies * remove hard-coded vaultproject.io on local links * remove 'index.html' from internal links * remove '.html' at end of internal links * manual review cleanup Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com> 2020-01-22 20:05:41 +00:00			`Re-wrapping](/guides/encryption/transit-rewrap) guide or [Java Application`
			`Demo](/guides/encryption/spring-demo) guide.`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00
[website] Link Cleaning (#8205) * update dependencies * remove hard-coded vaultproject.io on local links * remove 'index.html' from internal links * remove '.html' at end of internal links * manual review cleanup Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com> 2020-01-22 20:05:41 +00:00			`- [Java Application Demo](/guides/encryption/spring-demo) guide walks`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			`through a sample application which relies on Vault to generate database`
			`credentials as well as encrypting sensitive data. This guide is for anyone who`
			`wishes to reproduce the demo introduced in`
			`the [Manage secrets, access, and encryption in the public cloud with Vault](https://www.hashicorp.com/resources/solutions-engineering-webinar-series-episode-2-vault)`
			`webinar.`

[website] Link Cleaning (#8205) * update dependencies * remove hard-coded vaultproject.io on local links * remove 'index.html' from internal links * remove '.html' at end of internal links * manual review cleanup Co-authored-by: Calvin Leung Huang <cleung2010@gmail.com> 2020-01-22 20:05:41 +00:00			`- [Transit Secrets Re-wrapping](/guides/encryption/transit-rewrap) guide`
New Website! (#8154) * new documentation website * ci job adjustment * update to latest version on downloads page * remove transition-period scripts * add netlify toml file * fix docs patch * fix ci config? * revert go.mod changes * a couple last markdown formatting fixes 2020-01-18 00:18:09 +00:00			`demonstrates one possible way to re-wrap data after rotating an encryption key`
			`in the transit engine in Vault.`