{"id":6868,"date":"2023-04-18T07:55:52","date_gmt":"2023-04-18T07:55:52","guid":{"rendered":"https:\/\/pariswells.com\/blog\/?p=6868"},"modified":"2023-04-18T07:55:54","modified_gmt":"2023-04-18T07:55:54","slug":"microsoft-platform-managed-key-azure-rotation","status":"publish","type":"post","link":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation","title":{"rendered":"Microsoft \\ platform-managed key Azure Rotation"},"content":{"rendered":"\n<ul class=\"wp-block-list\">\n<li><strong>SSE with PMK is server-side encryption with a platform-managed key.<\/strong><\/li>\n\n\n\n<li>SSE with CMK is server-side encryption with a customer-managed key.<\/li>\n\n\n\n<li>ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. )<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">As Microsoft Manage your keys ( not Customer Managed Keys ( CMK )\u00a0 )\u00a0 &#8211;\u00a0<a href=\"https:\/\/github.com\/MicrosoftDocs\/azure-docs\/issues\/68838\" target=\"_blank\" rel=\"noreferrer noopener\">How often exactly are Microsoft-managed keys rotated \u00b7 Issue #68838 \u00b7 MicrosoftDocs\/azure-docs \u00b7 GitHub<\/a><\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\"><strong>The Microsoft-managed key is rotated appropriately per compliance requirements.&nbsp;<\/strong>Note that the frequency may change without notice. Azure does not expose the logs to indicate rotation to customers. If you have specific key rotation requirements, then we recommend that you move to customer-managed keys. That way, you can manage and audit the rotation yourself.<\/p>\n<\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">So if you have a required key rotation period we will need to change your encryption of disks to CMK ( Server or Client Side ) <\/p>\n","protected":false},"excerpt":{"rendered":"<p>As Microsoft Manage your keys ( not Customer Managed Keys ( CMK )\u00a0 )\u00a0 &#8211;\u00a0How often exactly are Microsoft-managed keys rotated \u00b7 Issue #68838 \u00b7 MicrosoftDocs\/azure-docs \u00b7 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-6868","post","type-post","status-publish","format-standard","hentry","category-research"],"aioseo_notices":[],"aioseo_head":"\n\t\t<!-- All in One SEO 4.9.8 - aioseo.com -->\n\t<meta name=\"description\" content=\"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As\" \/>\n\t<meta name=\"robots\" content=\"max-image-preview:large\" \/>\n\t<meta name=\"author\" content=\"paris\"\/>\n\t<link rel=\"canonical\" href=\"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation\" \/>\n\t<meta name=\"generator\" content=\"All in One SEO (AIOSEO) 4.9.8\" \/>\n\t\t<meta property=\"og:locale\" content=\"en_US\" \/>\n\t\t<meta property=\"og:site_name\" content=\"Welcome to Pariswells.com |\" \/>\n\t\t<meta property=\"og:type\" content=\"article\" \/>\n\t\t<meta property=\"og:title\" content=\"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com\" \/>\n\t\t<meta property=\"og:description\" content=\"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As\" \/>\n\t\t<meta property=\"og:url\" content=\"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation\" \/>\n\t\t<meta property=\"article:published_time\" content=\"2023-04-18T07:55:52+00:00\" \/>\n\t\t<meta property=\"article:modified_time\" content=\"2023-04-18T07:55:54+00:00\" \/>\n\t\t<meta name=\"twitter:card\" content=\"summary\" \/>\n\t\t<meta name=\"twitter:title\" content=\"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com\" \/>\n\t\t<meta name=\"twitter:description\" content=\"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As\" \/>\n\t\t<script type=\"application\/ld+json\" class=\"aioseo-schema\">\n\t\t\t{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#article\",\"name\":\"Microsoft \\\\ platform-managed key Azure Rotation | Welcome to Pariswells.com\",\"headline\":\"Microsoft \\\\ platform-managed key Azure Rotation\",\"author\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"publisher\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\"},\"datePublished\":\"2023-04-18T07:55:52+00:00\",\"dateModified\":\"2023-04-18T07:55:54+00:00\",\"inLanguage\":\"en-US\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#webpage\"},\"isPartOf\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#webpage\"},\"articleSection\":\"Research\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#breadcrumblist\",\"itemListElement\":[{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog#listItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/pariswells.com\\\/blog\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"name\":\"Research\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"position\":2,\"name\":\"Research\",\"item\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research\",\"nextItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#listItem\",\"name\":\"Microsoft \\\\ platform-managed key Azure Rotation\"},\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog#listItem\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#listItem\",\"position\":3,\"name\":\"Microsoft \\\\ platform-managed key Azure Rotation\",\"previousItem\":{\"@type\":\"ListItem\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/category\\\/research#listItem\",\"name\":\"Research\"}}]},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\",\"name\":\"Welcome to Pariswells.com\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris\",\"name\":\"paris\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#authorImage\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/93b8ee3f592ac401167f870452bd82d43de80152cd3524e2853403658ada9984?s=96&d=mm&r=g\",\"width\":96,\"height\":96,\"caption\":\"paris\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#webpage\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation\",\"name\":\"Microsoft \\\\ platform-managed key Azure Rotation | Welcome to Pariswells.com\",\"description\":\"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As\",\"inLanguage\":\"en-US\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#website\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/research\\\/microsoft-platform-managed-key-azure-rotation#breadcrumblist\"},\"author\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"creator\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/author\\\/paris#author\"},\"datePublished\":\"2023-04-18T07:55:52+00:00\",\"dateModified\":\"2023-04-18T07:55:54+00:00\"},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/\",\"name\":\"Welcome to Pariswells.com\",\"inLanguage\":\"en-US\",\"publisher\":{\"@id\":\"https:\\\/\\\/pariswells.com\\\/blog\\\/#organization\"}}]}\n\t\t<\/script>\n\t\t<!-- All in One SEO -->\n\n","aioseo_head_json":{"title":"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com","description":"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As","canonical_url":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation","robots":"max-image-preview:large","keywords":"","webmasterTools":{"miscellaneous":""},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#article","name":"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com","headline":"Microsoft \\ platform-managed key Azure Rotation","author":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"publisher":{"@id":"https:\/\/pariswells.com\/blog\/#organization"},"datePublished":"2023-04-18T07:55:52+00:00","dateModified":"2023-04-18T07:55:54+00:00","inLanguage":"en-US","mainEntityOfPage":{"@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#webpage"},"isPartOf":{"@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#webpage"},"articleSection":"Research"},{"@type":"BreadcrumbList","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#breadcrumblist","itemListElement":[{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog#listItem","position":1,"name":"Home","item":"https:\/\/pariswells.com\/blog","nextItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","name":"Research"}},{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","position":2,"name":"Research","item":"https:\/\/pariswells.com\/blog\/category\/research","nextItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#listItem","name":"Microsoft \\ platform-managed key Azure Rotation"},"previousItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog#listItem","name":"Home"}},{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#listItem","position":3,"name":"Microsoft \\ platform-managed key Azure Rotation","previousItem":{"@type":"ListItem","@id":"https:\/\/pariswells.com\/blog\/category\/research#listItem","name":"Research"}}]},{"@type":"Organization","@id":"https:\/\/pariswells.com\/blog\/#organization","name":"Welcome to Pariswells.com","url":"https:\/\/pariswells.com\/blog\/"},{"@type":"Person","@id":"https:\/\/pariswells.com\/blog\/author\/paris#author","url":"https:\/\/pariswells.com\/blog\/author\/paris","name":"paris","image":{"@type":"ImageObject","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#authorImage","url":"https:\/\/secure.gravatar.com\/avatar\/93b8ee3f592ac401167f870452bd82d43de80152cd3524e2853403658ada9984?s=96&d=mm&r=g","width":96,"height":96,"caption":"paris"}},{"@type":"WebPage","@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#webpage","url":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation","name":"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com","description":"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As","inLanguage":"en-US","isPartOf":{"@id":"https:\/\/pariswells.com\/blog\/#website"},"breadcrumb":{"@id":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation#breadcrumblist"},"author":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"creator":{"@id":"https:\/\/pariswells.com\/blog\/author\/paris#author"},"datePublished":"2023-04-18T07:55:52+00:00","dateModified":"2023-04-18T07:55:54+00:00"},{"@type":"WebSite","@id":"https:\/\/pariswells.com\/blog\/#website","url":"https:\/\/pariswells.com\/blog\/","name":"Welcome to Pariswells.com","inLanguage":"en-US","publisher":{"@id":"https:\/\/pariswells.com\/blog\/#organization"}}]},"og:locale":"en_US","og:site_name":"Welcome to Pariswells.com |","og:type":"article","og:title":"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com","og:description":"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As","og:url":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation","article:published_time":"2023-04-18T07:55:52+00:00","article:modified_time":"2023-04-18T07:55:54+00:00","twitter:card":"summary","twitter:title":"Microsoft \\ platform-managed key Azure Rotation | Welcome to Pariswells.com","twitter:description":"SSE with PMK is server-side encryption with a platform-managed key. SSE with CMK is server-side encryption with a customer-managed key. ADE is Azure disk encryption ( Azure Disk Encryption leverages either the DM-Crypt feature of Linux or the BitLocker feature of Windows to encrypt managed disks with customer-managed keys within the guest VM. ) As"},"aioseo_meta_data":{"post_id":"6868","title":null,"description":null,"keywords":[],"keyphrases":{"focus":{"keyphrase":"","score":0,"analysis":{"keyphraseInTitle":{"score":0,"maxScore":9,"error":1}}},"additional":[]},"canonical_url":null,"og_title":null,"og_description":null,"og_object_type":"default","og_image_type":"default","og_image_url":null,"og_image_width":null,"og_image_height":null,"og_image_custom_url":null,"og_image_custom_fields":null,"og_video":"","og_custom_url":null,"og_article_section":null,"og_article_tags":[],"twitter_use_og":false,"twitter_card":"default","twitter_image_type":"default","twitter_image_url":null,"twitter_image_custom_url":null,"twitter_image_custom_fields":null,"twitter_title":null,"twitter_description":null,"schema":{"blockGraphs":[],"customGraphs":[],"default":{"data":{"Article":[],"Course":[],"Dataset":[],"FAQPage":[],"Movie":[],"Person":[],"Product":[],"ProductReview":[],"Car":[],"Recipe":[],"Service":[],"SoftwareApplication":[],"WebPage":[]},"graphName":"","isEnabled":true},"graphs":[]},"schema_type":"default","schema_type_options":null,"pillar_content":false,"robots_default":true,"robots_noindex":false,"robots_noarchive":false,"robots_nosnippet":false,"robots_nofollow":false,"robots_noimageindex":false,"robots_noodp":false,"robots_notranslate":false,"robots_max_snippet":"-1","robots_max_videopreview":"-1","robots_max_imagepreview":"large","priority":null,"frequency":"default","location":null,"local_seo":null,"breadcrumb_settings":null,"limit_modified_date":false,"ai":null,"created":"2023-04-18 07:54:54","updated":"2023-04-18 08:06:35","primary_term":null,"seo_analyzer_scan_date":null},"aioseo_breadcrumb":"<div class=\"aioseo-breadcrumbs\"><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/pariswells.com\/blog\" title=\"Home\">Home<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\t<a href=\"https:\/\/pariswells.com\/blog\/category\/research\" title=\"Research\">Research<\/a>\n\t\t<\/span><span class=\"aioseo-breadcrumb-separator\">&raquo;<\/span><span class=\"aioseo-breadcrumb\">\n\t\t\tMicrosoft \\ platform-managed key Azure Rotation\n\t\t<\/span><\/div>","aioseo_breadcrumb_json":[{"label":"Home","link":"https:\/\/pariswells.com\/blog"},{"label":"Research","link":"https:\/\/pariswells.com\/blog\/category\/research"},{"label":"Microsoft \\ platform-managed key Azure Rotation","link":"https:\/\/pariswells.com\/blog\/research\/microsoft-platform-managed-key-azure-rotation"}],"_links":{"self":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/6868","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/comments?post=6868"}],"version-history":[{"count":1,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/6868\/revisions"}],"predecessor-version":[{"id":6869,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/posts\/6868\/revisions\/6869"}],"wp:attachment":[{"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/media?parent=6868"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/categories?post=6868"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/pariswells.com\/blog\/wp-json\/wp\/v2\/tags?post=6868"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}