Understanding How Workfront Encrypts Files


Web Application Encryption

The following types of encryption are used when accessing Workfront in the web application:

  • At rest
    Workfront uses AES-256 symmetric disk encryption, also called encryption at rest, for all its servers, its database, and its document storage. This includes the encryption of all customer data. 
  • In transit
    When a user sends a request to Workfront, their browser and the Workfront server connect through HTTPS. This protocol provides encryption for data which is in transit. Workfront currently supports TLS versions 1.1 and 1.2. 

Files you upload to Workfront are encrypted with AES-256 encryption when either of the following conditions are met:

  • You have purchased the Plan Plus or Work Plus plans
  • You have purchased 500 GB or more of storage 

Only new documents are encrypted. Documents that were uploaded to Workfront before the time that you met one of the above conditions are not encrypted.

Mobile App Encryption

By default, iOS phones use AES-256 encryption. For the iOS mobile application, Workfront does not have any additional encryption. For the Android mobile application, Workfront uses AES-256 encryption.

This article last updated on 2019-01-17 16:54:04 UTC