You are viewing a plain text version of this content. The canonical link for it is here.
Posted to jira@kafka.apache.org by "kaiyangzhang (Jira)" <ji...@apache.org> on 2023/05/09 03:14:00 UTC
[jira] [Commented] (KAFKA-8170) To add kafka data at rest encryption
[ https://issues.apache.org/jira/browse/KAFKA-8170?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17720759#comment-17720759 ]
kaiyangzhang commented on KAFKA-8170:
-------------------------------------
[~sliebau] Hello, do you have any new progress in[ KIP-317], or do you have any information for reference?
> To add kafka data at rest encryption
> ------------------------------------
>
> Key: KAFKA-8170
> URL: https://issues.apache.org/jira/browse/KAFKA-8170
> Project: Kafka
> Issue Type: New Feature
> Components: log
> Reporter: Akash
> Priority: Minor
> Labels: features, security
>
> Kafka have mechanism for wire encryption of data.
> But the kafka data at rest which exist in <log.dir>/<topic-name>-<partition> is still unencrypted.
> This directories now have log files with actual messages embedded metadata, but unauthorised user can still recover messages from this files
> Addiding encryption for this data would be valuable for preventing message protection from disk theft, unauthorised user access on servers.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)