Q1. Does Encryptik supports File encryption?
It supports file encryption. Attachments and Feed files are the supported file types.
Q2. Assuming that Encryptik support encryption for Files, is it just a matter of referencing your decrypt function
when working with that Blob data for the file download step?
Thats correct. We can provide some JS utility and code example on how to encrypt and
decrypt blob data in a custom VF page
Q3. Is there a command to force encryption for data that currently isn’t encrypted once Encryptik is installed?
Essentially a bulk convert for existing unencrypted fields into encrypted data?
Not Required. Encryptik automatically takes care of data backup and then encrypting the existing
data.. Rollbacks the entire data changes if there is any error while performing all data encryption
Q4 Can the encryption trigger be modified so that we can only encrypt when certain requirements are met? You did mention that this was possible—but I’m wondering if this is something we can do, eg. by
calling the encryption function ourselves via Apex code—or if we need to pay for the customization?
Yes. most of it can be customized by using APIs with Apex code. For complex customization, you may need our engineers help to do that.
Q5. How does transitioning from standard Reports/Dashboards to the Encryptik version of Reports/
Dashboards happen? Is there a migration process (For customers with lot of existing reports)?
There is no need to migrate any existing reports.
Option1:The application provides different interfaces to see the salesforce standard reports. On click of that report, the data will be downloaded in clear text format
Option2: Use google chrome browser extension which can help to decrypt your standard report/dashboard data decrypted
Option3 : We provide a Query Explorer where you can query the data using same filter criteria like Report criteria to retrieve the clear data
Option4 : We can also build a interface where you can input a encrypted CSV file and system will returns decrypted CSV file
Q6. How are keys generated, used, and stored securely in your system?
Encryptik does not store any data outside of salesforce.
The key is generated internally and kept protected inside a protected custom settings of salesforce wherein the administrator does not have access to this key.
The key is tightly integrated within the organization where the application is installed and no one (including system administrator) has access to the key.
All data are kept encrypted using the highly secured AES 256 key encryption protocol.
Q7. What are your key management features for key recovery, archive,
backup, and key rollover?
This native solution keeps the key tightly integrated and managed internally so like other systems it does not need to have a recovery,
archival, backup and key rollover options as they keys are not available for the organization to manage.
Q8. Could you provide performance benchmarks for encryption and decryption
using your tool? The solution is a native solution and have no performance impact on the way salesforce data are accessed
currently. There are two methods on how the data is encrypted using Encryptik
A) Synchronous process In this method, whenever a new record is inserted or updated, before the data resides in the database,
encryption layer processes the records encrypts the data and then does the updates to the database. During view of data, the decryption layer takes care of decryption of data that is showcased to the screen.There is
hardly any performance impact during this process and works seamless
B) Asynchronous process In this method, when Encryptik is setup for the first time, there would be batch jobs that would be
initiated by Encryptik which does the data reconciliation as per the set configuration. These are salesforce jobs and it takes the usual job execution time as per salesforce resource availability. The asynchronous process
are recommended to be done during a setup down-time window.
Q9. Does the tool have the ability to create set of reports for monitoring user access, database access activities, and alerting?
Encryptik is a native solution and is built on the Salesforce platform. So all the user access, database access activities and alerting provided by
salesforce are supported
Q10. Does Encryptik provide any audit capability (of all data access and encryption
operations performed)? Following are the audits associated with Encryptik.
Audit Configuration:- Encryptik audits all the configuration changes and a report can be set to be sent to the
audit team for any changes that has been initiated. It also provide utility for Audit team/ Security team to generate reports of the configuration anytime from the system.
Data access :- Any changes to a particular field can be audited by enabling the salesforce audit feature.
Encryptik supports the salesforce auditing of the fields.
Encryption operations:- Encryptik is built on the Salesforce platform and it complements all the security and audit
options that salesforce already provides to the customers
–Powered by CEPTES Software Encrpytik App Download Link
“Try Encryptik today.- A solution for every salesforce customers”