commit | aa925b7ab44cb23fbef479e077c072ba942b3a0a | [log] [tgz] |
---|---|---|
author | Robert Newson <rnewson@apache.org> | Thu May 05 14:39:37 2022 +0100 |
committer | Robert Newson <rnewson@apache.org> | Tue Jun 21 17:05:51 2022 +0100 |
tree | aef7c0a4dfa2b0aefc817616afccb69779de498b | |
parent | 592837abc8b07f9b28898fa91c31658e2beecfc4 [diff] |
Database Encryption Support CouchDB can optionally encrypt databases and views. We use AES in Counter Mode, which ensures we can encrypt and decrypt any section of the file without padding or alignment. The ciphertext is the same length as the plaintext. This mode provides confidentiality but not authentication. Key management is configurable, a system administrator can write a module implementing the couch_encryption_manager behaviour with any implementation.