<div dir="ltr"><br><div class="gmail_extra"><br><div class="gmail_quote">On 30 November 2015 at 16:04, Coffman, Joel M. <span dir="ltr"><<a href="mailto:Joel.Coffman@jhuapl.edu" target="_blank">Joel.Coffman@jhuapl.edu</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div style="word-wrap:break-word;font-family:Calibri,sans-serif;font-size:14px;color:rgb(0,0,0)"><span class="">
<div></div>
<div>On 11/25/15, 11:33 AM, "Ben Swartzlander" <<a href="mailto:ben@swartzlander.org" target="_blank">ben@swartzlander.org</a>> wrote:</div>
<div><br>
</div>
<blockquote style="BORDER-LEFT:#b5c4df 5 solid;PADDING:0 0 0 5;MARGIN:0 0 0 5">
<div>On 11/24/2015 03:27 PM, Nathan Reller wrote:</div></blockquote></span></div></blockquote><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div style="word-wrap:break-word;font-family:Calibri,sans-serif;font-size:14px;color:rgb(0,0,0)"><span class=""><blockquote style="BORDER-LEFT:#b5c4df 5 solid;PADDING:0 0 0 5;MARGIN:0 0 0 5">
<div>Trying to design a system where we expect nova to do data encryption but</div>
<div>not cinder will not work in the long run. The eventual result will be </div>
<div>that nova will have to take on most of the functionality of cinder and </div>
<div>we'll be back to the nova-volume days.</div>
</blockquote>
</span><div>Could you explain further what you mean by "nova will have to take on most of the functionality of cinder"? In the current design, Nova is still passing data blocks to Cinder for storage – they're just encrypted instead of plaintext. That doesn't seem
to subvert the functionality of Cinder or reimplement it.</div><span class=""></span></div></blockquote></div><br></div><div class="gmail_extra">The functionality of cinder is more than blindly storing blocks - in particular it has create-from/upload-to image, backup, and retype, all of which do some degree of manipulation of the data and/or volume encryption metadata.<br><br></div><div class="gmail_extra">We are suffering from somewhat incompatible requirements with encryption between those who want fully functional cinder and encryption on disk (the common case I think), and those who have enhanced security requirements.<br></div><div class="gmail_extra"><br><div class="gmail_signature"><div dir="ltr"><div>-- <br>Duncan Thomas</div></div></div>
</div></div>