@SIMANCHALA MISHRA Welcome to Microsoft Q&A Forum, Thank you for posting your query here!
I understand that you are checking for a way to encrypt account data in Azure APIM to protect the payload data for a banking project.
From the Security standpoint, Azure API Management supports multiple versions of Transport Layer Security (TLS) protocol to secure API traffic for:
- Client side
- Backend side
API Management also supports multiple cipher suites used by the API gateway.
By default, API Management enables TLS 1.2 for client and backend connectivity and several supported cipher suites. This guide shows you how to manage protocols and ciphers configuration for an Azure API Management instance.
APIM also abides by the Azure Data Encryption at rest.
To enable message encryption in Azure APIM for the Request body payload, you can use policies. Policies are a powerful feature in Azure APIM that allow you to modify the behavior of API requests and responses.
We have a sample policy which you could start with: https://github.com/Azure/api-management-policy-snippets/blob/master/examples/Encrypt%20data%20using%20expressions.policy.xml.
Within the docs we do show that you have access to various Encrypt and Decrypt methods: https://docs.microsoft.com/en-us/azure/api-management/api-management-policy-expressions#ref-context-request.
Also note that APIM encrypts all sensitive data (policies, secret named values, subscription keys) using per-service, Microsoft managed encryption keys. The keys are stored in Azure Key Vault (owned by Microsoft).
For more information on how to use policies in Azure APIM, you can refer to the following documentation:
- Azure API Management policies
- Security Baseline for APIM: https://docs.microsoft.com/en-us/azure/api-management/security-baseline#48-encrypt-sensitive-information-at-rest
I hope this information helps you encrypt the payload data in Azure APIM. Let me know if you have any further questions or concerns.
**
Please do not forget to "Accept the answer” and “up-vote” wherever the information provided helps you, this can be beneficial to other community members.