Data encryption/decryption at rest
Andrew Varner
drew.varner@REDACTED
Sat Jan 22 17:19:12 CET 2022
My customers always require encryption for data-at-rest (DAR). The nodes we deploy to always have it enabled. Beyond your serialized ETS tables, it protects local log files, which may also contain personally identifiable information. As for performance impacts, I’ve heard they’re negligible. Measuring your specific application would tell you how much.
> On Jan 22, 2022, at 8:00 AM, Frank Muller <frank.muller.erl@REDACTED> wrote:
>
>
> I’ve heard about Luks / Ceph.
>
> Any practical experience with them or any other alternative? I’m looking for a simple solution.
>
> Will data decrypting affect performance?
>
> /Frank
>
>>
>> Can you just use full disk encryption at the operating system level?
>>
>>>> On Jan 22, 2022, at 5:04 AM, Frank Muller <frank.muller.erl@REDACTED> wrote:
>>>>
>>> Hi guys,
>>
>>>
>>>
>>> We have some ETS tables persisted to disk periodically.
>>>
>>> These data are almost static (rarely change) and contains clients information such as: name, gender, date/place of birth, security token, etc.
>>>
>>> Due to new policy in place, these data has to be encrypted at rest.
>>> But I still need to access it in a decrypted way inside my Erlang app.
>>>
>>> What approach should I take?
>>> Is there any Erlang library to help with this task?
>>>
>>> Disclaimer: I’m by far not a security expert
>>>
>>> Thanks
>>> /Frank
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://erlang.org/pipermail/erlang-questions/attachments/20220122/582d6475/attachment.htm>
More information about the erlang-questions
mailing list