Skills
.Work. You
Rest

encryption-strategy

Community

Design encryption strategy across data states.

Software Engineering#compliance#encryption#cryptography#data-protection#security-architecture#key-management
AuthorSSiertsema
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill guides the design of comprehensive encryption strategies that protect data at-rest, in-transit, in-use, and end-to-end across systems.

Core Features & Use Cases

  • Standards-only cryptography: avoid custom algorithms; rely on vetted implementations.
  • Defense in depth: combine at-rest, in-transit, and access controls to strengthen security.
  • Key management first-class: envelope encryption with KEKs and HSM/KMS-backed DEKs.
  • Crypto agility: versioned ciphertext envelopes and clear migration paths for algorithm transitions.
  • Regulatory alignment: maps to FIPS 140-3, PCI-DSS, GDPR Art. 32, and HIPAA considerations.
  • Data-state-per-category design: At-rest (envelope encryption), In-transit (TLS 1.3 + mTLS), In-use (memory protections), End-to-end (client-side encryption).
  • TLS configuration guidance: TLS 1.3 minimum, AEAD ciphers, automated certificate rotation, PFS, and mTLS for internal services.

Quick Start

Define a data-protection design that covers at-rest, in-transit, in-use, and end-to-end flows and specify the key management plan.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: encryption-strategy
Download link: https://github.com/SSiertsema/claude-code-plugins/archive/main.zip#encryption-strategy

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.