Encryption as a Service: Transit Secrets Engine
HashiCorp Vault's transit secrets engine handles cryptographic functions on data in-transit. It can also be understood as encryption as a service.
Data Encryption
Vault provides Encryption as a Service (EaaS) to enable security teams to fortify data during transit and at rest. So even if an intrusion occurs, your data is encrypted and the attacker would never get a hold of the raw data.
Transit Secrets Re-wrapping
Demonstrate one possible way to re-wrap data after rotating an encryption key in the transit engine in Vault.
Java Application Demo
Understand Vault's AppRole authentication pattern and how to use it to securely introduce a Vault authentication token to a target server, application, container, etc. in a Java environment.