Google Git
Sign in
apache / couchdb / refs/heads/database_encryption
commitaa925b7ab44cb23fbef479e077c072ba942b3a0a[log] [tgz]
authorRobert Newson <rnewson@apache.org>Thu May 05 14:39:37 2022 +0100
committerRobert Newson <rnewson@apache.org>Tue Jun 21 17:05:51 2022 +0100
treeaef7c0a4dfa2b0aefc817616afccb69779de498b
parent592837abc8b07f9b28898fa91c31658e2beecfc4 [diff]
Database Encryption Support

CouchDB can optionally encrypt databases and views.

We use AES in Counter Mode, which ensures we can encrypt and decrypt
any section of the file without padding or alignment. The ciphertext
is the same length as the plaintext. This mode provides
confidentiality but not authentication.

Key management is configurable, a system administrator can write a
module implementing the couch_encryption_manager behaviour with any
implementation.
10 files changed
tree: aef7c0a4dfa2b0aefc817616afccb69779de498b
  1. .devcontainer/
  2. .github/
  3. bin/
  4. build-aux/
  5. config/
  6. dev/
  7. rel/
  8. share/
  9. src/
  10. support/
  11. test/
  12. .asf.yaml
  13. .credo.exs
  14. .formatter.exs
  15. .gitignore
  16. .mailmap
  17. BUGS.md
  18. COMMITTERS.md
  19. configure
  20. configure.ps1
  21. CONTRIBUTING.md
  22. CONTRIBUTORS.in
  23. erlang_ls.config
  24. INSTALL.Unix.md
  25. INSTALL.Windows.md
  26. LICENSE
  27. make.cmd
  28. Makefile
  29. Makefile.win
  30. mix.exs
  31. mix.lock
  32. NOTICE
  33. README-DEV.rst
  34. README.rst
  35. rebar.config.script
  36. setup_eunit.template
  37. version.mk