Redis Security on key level
37 views
Skip to first unread message
Sergey Korytnikov
Aug 5, 2016, 10:24:47 AM8/5/16
to Redis DB
Hi,
Is there any standard or a recommended way to secure a set of keys of one application and not to allow other applications or clients to access these keys?
It seems Redis doesn't provide that out of the box, but has anyone achieved the same goal when it's needed to securely isolate data by applications within one redis cluster, assuming someone can use Redis client and read any key they want?
Jan-Erik Rediger
Aug 5, 2016, 12:44:09 PM8/5/16
to redi...@googlegroups.com
Two options:
1. Per-application encryption for keys/values
2. A separate instance per application
> --
> You received this message because you are subscribed to the Google Groups "Redis DB" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to redis-db+u...@googlegroups.com.
> To post to this group, send email to redi...@googlegroups.com.
> Visit this group at https://groups.google.com/group/redis-db.
> For more options, visit https://groups.google.com/d/optout.
1. Per-application encryption for keys/values
2. A separate instance per application
> You received this message because you are subscribed to the Google Groups "Redis DB" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to redis-db+u...@googlegroups.com.
> To post to this group, send email to redi...@googlegroups.com.
> Visit this group at https://groups.google.com/group/redis-db.
> For more options, visit https://groups.google.com/d/optout.
Sergey Korytnikov
Aug 5, 2016, 1:39:28 PM8/5/16
to Redis DB, jan...@fnordig.de
Thank you, Janerik,
The solution of encrypting keys and values sounds interesting.
Is there any suggested/recommended algorithm for redis environment to minimize the overhead for encryption?
Reply all
Reply to author
Forward
0 new messages