S3fs-fuse: Client-side encryption

Created on 15 Feb 2018  路  3Comments  路  Source: s3fs-fuse/s3fs-fuse

Hello,

Could you please consider supporting client-side encryption? ( https://docs.aws.amazon.com/general/latest/gr/aws_sdk_cryptography.html ) This would allow not sharing the encryption keys with Amazon.

Thank you!

James

enhancement

Most helpful comment

Even though it's not an S3 feature, it would be very useful. Or are there other ways to do this?

All 3 comments

Note that client-side encryption is not actually a feature of the S3 service itself -- it's actually a feature provided by a subset of the official AWS SDKs, none of which are used by s3fs-fuse.

Even though it's not an S3 feature, it would be very useful. Or are there other ways to do this?

An s3fs fork implements this:

https://github.com/hellochrisyou/S3FS_OpenSSL_RC4_MD5

However I think we should align with the AWS implementation to allow interoperability:

https://github.com/gaul/s3proxy/pull/296#issuecomment-530817114

Was this page helpful?
0 / 5 - 0 ratings