As Microsoft announced last year, Microsoft started expanding encryption across their services in an effort to reinforce legal protections for their customers’ data last month. All Outlook.com emails are now encrypted like how Office 365 e-mail works already. Even they made encryption improvements for Microsoft Azure guest OS. Today, they are announcing further improvements for encryption on Azure.
The encryption improvements, which apply to Microsoft Azure cipher solution for hosted guest virtual machines, provide customers with enhanced protection when connecting and transmitting data. For example, the enhancements to the default Transport Layer Security (TLS)/Secure Socket Layer (SSL) cipher suites helps ensure that connections are better encrypted during transmission. In addition, enabling Perfect Forward Secrecy (PFS) helps ensure a different encryption key is used for every connection, making it more difficult for attackers to decrypt connections.
As technology advances and attackers continue to adjust their tactics, it’s essential that cloud providers evolve their security protections to keep pace with the changing landscape. Over the years as cipher suites become compromised, staying diligent and nimble is essential. The latest advancements implemented by Microsoft Azure is an important step in the ongoing chain of evolution in our security commitment, and helps provide customers with additional layers of protection that reduce the risk of an attacker being able to successfully decrypt a connection.
Read more about it here.