Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add database encryption for data at rest #46057

Closed
0x4E4448 opened this issue Jun 23, 2024 · 1 comment
Closed

Add database encryption for data at rest #46057

0x4E4448 opened this issue Jun 23, 2024 · 1 comment
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap enhancement

Comments

@0x4E4448
Copy link

Is your feature request related to a problem? Please describe.
Data stored in the database is generally stored in plaintext. This is not a big issues for AIO or installs on the same server, but for installs using separate servers for NC and the database, particularly where the database server is not controlled by the NC operator, data can be easily viewed and compromised. In addition to NC server data, calendars, contacts, notes, etc could all be of concern.

Describe the solution you'd like
There should be an ability to encrypt data before or as it is written to the database. The key would likely be set in the NC config, but would help limit the exposure of data outside of the NC server itself.

Describe alternatives you've considered
Database-side encryption is a potential solution but would likely require different implementations for different servers. Implementing the encryption in NC itself would be database independent.

Additional context
My use case is having primary storage in object storage with server side encryption and a database I host, but a NC front-end my client hosts. I want to minimize the amount of data I control that can be read by myself or an attacker.

How to use GitHub

  • Please use the 👍 reaction to show that you are interested into the same feature.
  • Please don't comment if you have no relevant information to add. It's just extra noise for everyone subscribed to this issue.
  • Subscribe to receive notifications on status change and new comments.

Is your feature request related to a problem? Please describe.
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]

Describe the solution you'd like
A clear and concise description of what you want to happen.

Describe alternatives you've considered
A clear and concise description of any alternative solutions or features you've considered.

Additional context
Add any other context or screenshots about the feature request here.
@0x4E4448 0x4E4448 added 0. Needs triage Pending check for reproducibility or if it fits our roadmap enhancement labels Jun 23, 2024
@joshtrichards
Copy link
Member

Duplicate of #13103

@joshtrichards joshtrichards marked this as a duplicate of #13103 Jun 25, 2024
@joshtrichards joshtrichards closed this as not planned Won't fix, can't repro, duplicate, stale Jun 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@joshtrichards @0x4E4448