Glossary

Encryption in transit

Encryption in transit protects data while it moves across a network, typically with TLS, so it cannot be read or tampered with between systems. It is distinct from encryption at rest, which protects stored data.

In code

It is decided by transport configuration: the minimum TLS version, whether certificates are verified, and whether an internal hop uses HTTPS. It weakens when a TLS floor drops, verification is disabled, or a call carrying sensitive data falls back to plain HTTP on a 'trusted' network.

SOC 2 CC6.7 in code
ISO 27001 A.8.24 in code

Get early access ← All terms