Q: Is your DB encrypted for “at rest” data?


A: We recommend using disk encryption for "data at rest" requirements. 

Even if a database were to use encryption, a user who was connected to the database would still have access to the data anyway,

so database encryption alone wouldn't be sufficient for "data at rest" security requirements.


The configurations in the database are not encrypted and are stored as diffs. Even though they stored as diffs,

there is always at least one full configuration for a given device config.

So if you had 3 backups of a device that each had a change, the database would contain one full configuration, and 2 diffs