You are viewing a plain text version of this content. The canonical link for it is here.

Posted to jira@kafka.apache.org by "kaiyangzhang (Jira)" <ji...@apache.org> on 2023/05/09 03:14:00 UTC

[jira] [Commented] (KAFKA-8170) To add kafka data at rest encryption

    [ https://issues.apache.org/jira/browse/KAFKA-8170?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17720759#comment-17720759 ] 

kaiyangzhang commented on KAFKA-8170:
-------------------------------------

[~sliebau] Hello, do you have any new progress in[ KIP-317], or do you have any information for reference?

> To add kafka data at rest encryption
> ------------------------------------
>
>                 Key: KAFKA-8170
>                 URL: https://issues.apache.org/jira/browse/KAFKA-8170
>             Project: Kafka
>          Issue Type: New Feature
>          Components: log
>            Reporter: Akash
>            Priority: Minor
>              Labels: features, security
>
> Kafka have mechanism for wire encryption of data.
> But the kafka data at rest which exist in <log.dir>/<topic-name>-<partition> is still unencrypted.
> This directories now have log files with actual messages embedded metadata, but unauthorised user can still recover messages from this files
> Addiding encryption for this data would be valuable for preventing message protection from disk theft, unauthorised user access on servers.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)