International Research Journal of Engineering and Technology (IRJET)
e-ISSN: 2395-0056
Volume: 13 Issue: 02 | Feb 2026
p-ISSN: 2395-0072
www.irjet.net
A REVIEW OF SECURE DATA PERSISTENCE STRATEGY USING ENTITY FRAMEWORK CORE WITH DYNAMIC ENCRYPTION IN ENTERPRISE .NET SYSTEMS Chandrabhan Singh1, Mrs. Arifa Khan2 1Master of Technology, Computer Science and Engineering, Lucknow Institute of Technology, Lucknow, India 2Assistant Professor, Department of Computer Science and Engineering, Lucknow Institute of Technology,
Lucknow, India ---------------------------------------------------------------------***---------------------------------------------------------------------
Abstract - The rapid digital transformation of enterprise
logic and relational databases. While EF Core enhances developer productivity and abstraction, it also introduces architectural considerations regarding secure data handling, encryption integration, and runtime enforcement of protection policies. This section contextualizes the importance of secure persistence in enterprise .NET systems and establishes the objectives of this review.
systems has intensified the need for robust data protection mechanisms within application persistence layers. In modern .NET ecosystems, Entity Framework Core (EF Core) serves as a widely adopted Object–Relational Mapping (ORM) framework that abstracts database interactions, yet introduces unique security considerations at the data persistence level. This review critically examines existing approaches to secure data persistence in enterprise .NET systems, with particular emphasis on dynamic encryption strategies integrated with EF Core. The paper synthesizes research on application-level encryption, database-native encryption mechanisms, cryptographic key management models, and runtime policy enforcement techniques. It systematically categorizes existing solutions based on encryption granularity, integration architecture, scalability, compliance alignment, and performance overhead. Furthermore, the review evaluates the role of EF Core features such as value converters, interceptors, and middleware pipelines in implementing transparent and adaptive encryption workflows. Key challenges identified include secure key rotation, multi-tenant isolation, performance trade-offs, and limitations in current ORM-level security abstractions. By consolidating dispersed literature across enterprise security, cryptography, and .NET architectural practices, this review provides a structured taxonomy of secure persistence strategies and outlines future research directions toward adaptive, policy-driven encryption frameworks for enterprise-grade applications.
1.1 Background: Importance of Data Security in Enterprise Applications Enterprise applications routinely process sensitive data, including personally identifiable information (PII), financial records, healthcare data, and proprietary intellectual property. The exposure of such data can result in financial losses, reputational damage, and regulatory penalties. Industry analyses consistently show that data breaches frequently originate from misconfigurations, inadequate encryption controls, and insufficient access management at the application layer (Verizon, 2023). Modern regulatory frameworks such as the General Data Protection Regulation (GDPR) and ISO/IEC 27001 emphasize encryption, access governance, and accountability mechanisms as foundational controls (European Parliament and Council, 2016). In this context, application-level security cannot rely solely on perimeter defenses; instead, secure-bydesign persistence mechanisms are required to enforce confidentiality and integrity directly within software architectures. Consequently, encryption strategies embedded within persistence workflows have emerged as a focal point in secure enterprise software engineering.
Key Words: Entity Framework Core; Secure Data Persistence; Dynamic Encryption; Enterprise .NET Systems; Cryptographic Key Management
1.2 Role of Persistence Frameworks in .NET (Focus on Entity Framework Core)
1. INTRODUCTION Enterprise information systems increasingly operate in distributed, cloud-native, and compliance-regulated environments, where data confidentiality, integrity, and availability are critical operational requirements. As organizations rely on data-driven decision-making and digital service delivery, the persistence layer of applications has become a strategic security boundary. Within the Microsoft ecosystem, Entity Framework Core (EF Core) functions as a primary Object–Relational Mapping (ORM) technology that mediates interactions between application
© 2026, IRJET
|
Impact Factor value: 8.315
Persistence frameworks abstract the complexity of database communication and enable developers to interact with data through object-oriented paradigms. EF Core, developed by Microsoft as a lightweight, cross-platform ORM, supports LINQ-based querying, change tracking, migrations, and extensibility through interceptors and value converters (Microsoft, 2023).
|
ISO 9001:2008 Certified Journal
|
Page 580