[openstack-dev] Storing encrypted objects -- in your customer encounters ..
Bhandaru, Malini K
malini.k.bhandaru at intel.com
Wed Dec 12 07:41:22 UTC 2012
Hello All!
Today one can store any object they please (with a size limit) in OpenStack Swift.
If that object is encrypted prior to storing, one has encrypted object storage.
How interested are users in having encryption service as a pipeline step, when they desire encryption, before the object is sent to storage.
The object attributes could include "encrypted=True\False, algorithm=alg1|alg2 ..".
Would users want to manage their own keys? Or trust a key manager to hold their keys? Or prefer to encrypt their data even before it
leaves their site (VM)? If we took the path of key-manager, should it be a standalone service, or be part of keystone ?
Regards
Malini
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20121212/d6f79f95/attachment.html>
More information about the OpenStack-dev
mailing list