Some problems with this
• Dealing with reboots
– We can't store passphrase on server
– Remote intervention (automated or manually)
• Recovering the key
– If we can snapshot memory, we can scrap for key'ing data
• Research on the specifics is public
• Look for crypt_config struct in memory dump
Slide 5
Slide 5 text
Can we make our database do this?
• MySQL supports symmetric encryption
mysql> insert into foobar values(1, AES_ENCRYPT('plaintext',
SHA2('passphrase', 512)));
mysql> select AES_DECRYPT(data, SHA2('passphrase', 512))
from foobar where index=1;
• Protecting the passphrase is important
– Store passphrase in tmpfs?
– Use users password?
Slide 6
Slide 6 text
Asymmetric approaches
• Data stored using public key
– PHP supports GnuPG
gnupg_addencryptkey($resource, "keyfingerprint");
$ciphertext = gnupg_encrypt($resource, "clear text");
• Data retrieved using private key
– OpenPGP.js with local key storage
– Separate local web server instance
Slide 7
Slide 7 text
What about backups to the cloud?
• Bacula supports data encryption
PKI Signatures = Yes
PKI Encryption = Yes
PKI Keypair = "/etc/bacula/my-local-keypair.pem"
PKI Master Key = "/etc/bacula/my-master-certificate.crt"
• Duplicity has GnuPG support
--encrypt-key key-id
Slide 8
Slide 8 text
We need to think about this issue
more. Not enough discussion on this.
• Follow me @jzsavoie
• XMPP [email protected]
• Questions, Angry Rants?