What happens to encrypted data when an admin restores the environment with a new certificate?

When an admin restores the environment with a new certificate in Qlik Sense, all encrypted data will be lost. This outcome occurs because Qlik Sense uses the certificate and its associated private key to encrypt and decrypt sensitive information. When a new certificate is applied, the previous encryption keys are no longer valid, making it impossible to decrypt the data that was originally encrypted with the old keys.

In addition, encrypted data relies heavily on the security model tied to the specific certificate used during its encryption process. Hence, without the correct key that matches the encryption, all previously secured data becomes inaccessible, and it is effectively rendered lost in relation to standard use case scenarios. This understanding of the encryption dependencies is crucial for system administrators to manage their data securely during the certificate management process.