-
Notifications
You must be signed in to change notification settings - Fork 5
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Encryption #3
Comments
Too much CPU. The cloudflare worker is just shuffling bytes between sockets which is almost CPU-less. BW is cheap for Cloudflare, but big encryption/decryption outside of the transparent TLS/SSL stuff is out of the question. In Azure, the best I think that can be done is using customer provided keys or the target storage's encryption stuff. Unfortunately, you'll need to give the cloud provider a key which they'll hold for the duration of the encryption/decryption process and the cloud provider will presumably destroy their copy of it when the operation is done. Also, never tried this with multi-part blobs or whatever either. But I would assume they work too. |
This is a better link: https://docs.microsoft.com/en-us/azure/storage/blobs/encryption-customer-provided-keys It's symmetric encryption though.
|
Yeah thanks but symmetric is not worth the effort. They'd have the key anyway. |
They pinky promise to not store the key for longer than necessary. Once the post completes, my guess is they wipe the key from all memory. I would imagine if they kept the key for any longer than necessary, that might break some certifications or validations of some sort. It's still a "promise" though. |
I think I'll try to look into this and see what can be done. The implementation should still deter most adversaries. |
+1 that I would be a user that would trust their pinky promise enough to use this symmetric encryption feature. What I would really like though, is to use |
Couldn't look at it this cycle. Fighting fire in #8 . Hopefully next cycle 😄 |
I haven't had time to pay attention to this. I'll take a PR if anyone wants to write up instructions post-transfer to encrypt the archives inside Azure's garden after they've been transferred to "plain text" and then delete the plain text afterwards, minimizing the window. Theoretically, it could be done with rclone on an Azure box doing the same rough thing as GCP. Though, I've heard Azure's networking is certainly not as legendary as GCP's fabric but I'm sure you could get comparable speeds. |
My manual process used to include piping
curl
intogpg --encrypt
before piping it toaws s3 cp -
. Do you think it might be interesting and feasible to implement a similar thing for GTR? Given that the data flows through CloudFlare worker, perhaps we could do perform the encryption inside the worker.What do you think?
The text was updated successfully, but these errors were encountered: