[openstack-dev] Volume Encryption

Clark, Robert Graham robert.clark at hp.com
Fri Mar 8 20:09:50 UTC 2013


Given some of the weak ideas with regards to key management and distribution
within the DC, I can see several situations where this is the _only_ benefit
we get from volume encryption.

 

From: Caitlin Bestler [mailto:Caitlin.Bestler at nexenta.com] 
Sent: 08 March 2013 14:50
To: OpenStack Development Mailing List
Subject: Re: [openstack-dev] Volume Encryption

 

Done properly, volume and/or object encryption eliminates the need to
degauss drives 

before de-commissioning them. Encryption also protects against theft of the
drives.

Degaussing would only be effective against drive theft if the thieves were
obliging

enough to provide advance notice so you could degauss the specific drives
just

before they were stolen.

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20130308/36c881e2/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6190 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20130308/36c881e2/attachment.bin>


More information about the OpenStack-dev mailing list