Encryption at Rest - CI/CD Glossary Definition
Encryption at rest protects stored data by encrypting it on disk, so that reading the raw storage without the key yields only ciphertext.
Key management
The strength of encryption at rest depends on protecting the encryption keys, typically held in a managed key service separate from the data.
In CI/CD
CI secrets, artifact stores, and caches should be encrypted at rest so a storage compromise does not expose credentials or build outputs.
Related guides
Encryption in Transit - CI/CD Glossary DefinitionEncryption in Transit: Encryption in transit protects data as it moves across a network by encrypting the con…
Asymmetric Encryption - CI/CD Glossary DefinitionAsymmetric Encryption: Asymmetric encryption uses a mathematically linked key pair - a public key to encrypt…
Secret - CI/CD Glossary DefinitionSecret: A **secret** is an encrypted value (token, key) stored by GitHub and injected into workflows without…