Around JIRA encryptions can you confirm the following:
- Attaching client confidential and private information to JIRA when logging issue only authorized teams members can see this info
- Is there encryption on the JIRA that once client confidential information is stored that the data at rest or where is stored is encrypted,
Depends what you mean by attached for one thing. If you put text into the Jira issue then you should ensure that the database you use is configured to encrypt the data at rest. Oracle can do this for instance.
If you are attaching documents, then they live on the application server filesystem. That relys on keeping the server secure and the directory structure (Jira Home directory and sub directories). Not encrypted unless you are using an encrypted filesystem, but even then it isn't the same.
From the web interface, yes only the users who are authorised will see A) the project, b) the issues within and c) notifications, provided that the project's security scheme and privileges are configured correctly.
We are an Atlassian Solution Partner and we've just released a solution called Team Secrets - it protects sensitive file attachments in JIRA with end-to-end encryption for attachment uploads and 2 factor verification for downloads.
We'd love to hear any feedback you might have!
Atlassian Summit is an excellent opportunity for in-person support, training, and networking.Learn more
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG