[openstack-dev] Volume Encryption
Jeremy Stanley
fungi at yuggoth.org
Thu Feb 14 22:57:07 UTC 2013
On 2013-02-14 21:58:30 +0000 (+0000), Bhandaru, Malini K wrote:
[...]
> De-duplication/compression is a no-win on an encrypted object.
> Prior to archiving, compression, then encryption, and save.
[...]
However, compression/deduplication before encryption can leak
information about the data. Note that this was the point of Rizzo
and Duong's CRIME presentation last year.
--
Jeremy Stanley
More information about the OpenStack-dev
mailing list