mlavin
commented
8 years ago The cryptography has support for symmetric encryption with key rotation via Fernet: https://cryptography.io/en/latest/fernet/ Migrating the existing field might be tricky but probably worthwhile.
If the secret key changes then the encrypted data will be lost. There should be a way to rotate the key with minimal work or problems which might cause downtime.