You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@kudu.apache.org by "Sam Nguyen (Jira)" <ji...@apache.org> on 2021/02/17 19:50:00 UTC
[jira] [Commented] (KUDU-2252) Design and implement native
encryption at rest
[ https://issues.apache.org/jira/browse/KUDU-2252?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17286115#comment-17286115 ]
Sam Nguyen commented on KUDU-2252:
----------------------------------
This came up as a blocker in our project, due to privacy compliance reasons (data stored longer than 30 days must be encrypted at the field level, not just block level).
> Design and implement native encryption at rest
> ----------------------------------------------
>
> Key: KUDU-2252
> URL: https://issues.apache.org/jira/browse/KUDU-2252
> Project: Kudu
> Issue Type: New Feature
> Components: fs, security
> Reporter: Mike Percy
> Assignee: Attila Bukor
> Priority: Major
> Labels: roadmap-candidate
>
> It would be beneficial for Kudu to support native encryption at rest.
> While the underlying filesystem can be encrypted with Kudu on top, there are benefits to native encryption at rest:
> * With native encryption support, it may be possible to specify different encryption keys for different objects or object trees (such as is possible with HDFS encryption)
> * It may be possible to share a single block device with other storage, including HDFS (note that some linux setups allow for "splitting" a device)
--
This message was sent by Atlassian Jira
(v8.3.4#803005)