Can’t say there are any best practices. The main challenge is that most encryption algorithms act on binary data and DAML doesn’t have a binary type. So you are going to have to encode it into a Text field. Base64 encoding is not a bad choice for that.
As noted in my post on attachments, I would not recommend doing this for large blobs of data, though.
3 Likes