For Remote Migration or Compute Migration where data is migrated from one server to another, all volumes are encrypted inflight during transfer by Transport Layer Security (TLS 1.2). Only the most secure cipher suite with perfect forward secrecy is used. The exact TLS configuration used is constantly updated automatically.

For Local Migration, since the connectivity from host to new storage is the same connection to be used for production post-migration (and thus presumably secure), data is transferred from one block volume to another block volume directly.
Was this article helpful?
Thank you!