On Tue, Mar 22, 2016 at 1:44 PM, Andrew Godwin <and...@aeracode.org> wrote:
> Indeed, we run Redis over TLS tunnels at work to fulfill this requirement, > so I know transport security is required, but at the same time reinventing > it might be more work than we need - would you trust our internal symmetric > encryption system, or go for TLS tunnels instead? > If not provided out of the box, there needs to be a supported way of wiring in encryption. The security/compliance person at my job stated that only securing the transport was not good enough for our compliance requirements when I was dealing with HIPAA (and some other compliance regulations) a few months ago. Regards, Michael Manfre -- You received this message because you are subscribed to the Google Groups "Django developers (Contributions to Django itself)" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-developers+unsubscr...@googlegroups.com. To post to this group, send email to django-developers@googlegroups.com. Visit this group at https://groups.google.com/group/django-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/django-developers/CAGdCwBtD-3bpX8AHmhgc1qzNR0rkW3j8ELxvSJGmHndOidbuNA%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
