[MDEV-4631] CassandraSE: Encrypted column data type - JIRA

Details

Type: Task
Status: Open
Priority: Minor
Resolution: Unresolved
Fix Version/s: 10.2
Component/s: None
Labels:
- cassandra

Description

For PCI/DSS it required to store SHA1 keys in a separate server. We can propose Cassandra integration as a remote HA storage holding secret keys.

Cassandra store in a column family a pre generated dictionary of keys.

Custom column data type store encrypted values and in a header the key of Cassandra column family.

On write in the column the Cassandra key should be randomly changed using a function hold in cache for period of time. We re generate the function reading some informations in the status table that should give a level of randomness to avoid dictionary attacks

Gliffy Diagrams

Attachments

Issue Links

relates to

MDEV-4912 Add a plugin to field types (column types)

In Progress

Activity

Hide

Permalink

roberto spadim added a comment - 2013-08-17 22:57

please check if we should consider this one a "blocked by" MDEV-4912, or if we will implement this as a "native" field type

Show

roberto spadim added a comment - 2013-08-17 22:57 please check if we should consider this one a "blocked by" MDEV-4912 , or if we will implement this as a "native" field type

People

Assignee:

Unassigned

Reporter:

VAROQUI Stephane

Votes:

1 Vote for this issue

Watchers:

3 Start watching this issue

Dates

Created:

2013-06-10 12:55

Updated:

2014-04-29 16:00

Agile

View on Board