function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Lawrence-AccentureLawrence-Accenture 

Clarify new feature "Encrypted Fields Available in Full-Copy Sandbox"?

The following is the notes on a new feature around encrypted fields from the Spring '12 release notes:

 

---

Encrypted Fields Available in Full-Copy Sandbox

Starting in Spring ’12, a full-copy sandbox can include the encryption keys for encrypted fields. This means that if there are encrypted fields in your production organization, those fields are also available for viewing and use in a full-copy sandbox. Contact your salesforce.com representative to enable this feature.


Important: With this feature enabled, everyone with access to the full-copy sandbox can see the actual value of any encrypted field.

---

 

Can someone please clarify what the last statement (in red) means? Are you telling me that encrypted data that is production is only viewable by someone with the "View Encrpyted Data" flag set on their profile... that this data is now viewable by *everyone* in the sandbox *regardless* of the "View Encrypted Data" flag? I.e. anyone logging in to the sandbox can view this data? That seems like a *huge* security issue.

 

-L