On Sun, 2015-05-31 at 10:01 -0400, Wyllys Ingersoll wrote: > Also consider key management services like Barbican or using an external > Key Mgmt server for managing the master keys (wrapping keys, > key-encrypting-keys, etc etc). > > One can store the wrapping key externally, and fetch it via KMIP or other > standard/secure protocol when the disks come online. The keys in > /etc/ceph/keys can be wrapped on disk and then unwrapped with the external > key to a ram disk when the disks come online. That way the raw dm-crypt > keys don't persist on the disk and are only available as long as the drive > is active and the system is up. > > Just one possibility. Switching to LUKS or something more robust is > probably better long term solution. Indeed, and that is why we have done that :-) The proposal as written is confusing, because what it calls a 'wrapper key' is really a key access key, it doesn't even encrypt it. Andrew Bartlett -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
