You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@kudu.apache.org by "Sam Nguyen (Jira)" <ji...@apache.org> on 2021/02/17 19:50:00 UTC

[jira] [Commented] (KUDU-2252) Design and implement native encryption at rest

    [ https://issues.apache.org/jira/browse/KUDU-2252?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17286115#comment-17286115 ] 

Sam Nguyen commented on KUDU-2252:
----------------------------------

This came up as a blocker in our project, due to privacy compliance reasons (data stored longer than 30 days must be encrypted at the field level, not just block level).

> Design and implement native encryption at rest
> ----------------------------------------------
>
>                 Key: KUDU-2252
>                 URL: https://issues.apache.org/jira/browse/KUDU-2252
>             Project: Kudu
>          Issue Type: New Feature
>          Components: fs, security
>            Reporter: Mike Percy
>            Assignee: Attila Bukor
>            Priority: Major
>              Labels: roadmap-candidate
>
> It would be beneficial for Kudu to support native encryption at rest.
> While the underlying filesystem can be encrypted with Kudu on top, there are benefits to native encryption at rest:
> * With native encryption support, it may be possible to specify different encryption keys for different objects or object trees (such as is possible with HDFS encryption)
> * It may be possible to share a single block device with other storage, including HDFS (note that some linux setups allow for "splitting" a device)



--
This message was sent by Atlassian Jira
(v8.3.4#803005)