[openstack-dev] Object Encryption

Bhandaru, Malini K malini.k.bhandaru at intel.com
Fri Jan 11 14:26:35 UTC 2013


Hello Everyone!

We at Intel having been mulling encryption in Openstack for security and privacy for a while and would like your feedback on the following blueprint. It details extending Swift to support server side encryption. It defines a key  manager built on top of a Swift system, ideally a separate Swift instance from the Object storage swift.

https://blueprints.launchpad.net/swift/+spec/encrypted-objects

We have been eagerly awaiting details from Mirantis on their implementation and happy to work with them.
Folks from JHUAPL, we are delighted you plan to provide server side, transparent volume encryption. Please check out Intel's XTS for volume encryption for data at rest, mentioned in the references in the above blue print. We also would be delighted if your implementation could leverage
our key manager to store Cinder specific encryption keys.

Swift Stack folks .. looking forward to work closely with you on this one if it gains community approval.

Regards
Malini
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20130111/9e5fa41b/attachment.html>


More information about the OpenStack-dev mailing list