Hi all, The REST catalog server implementations that keep the table metadata in a json file in an untrusted storage, are not safe for table encryption [1]. The data confidentiality and integrity can be broken by malicious modifications of the metadata.json.
We propose a short addition to the REST spec [2] that requires protection of the metadata integrity in catalog implementations that will be used for encrypted tables. Being a spec add-on, this is brought for a community discussion. All comments are welcome. Thanks, Gidon [1] thread starting at https://github.com/apache/iceberg/pull/13225#discussion_r2465759567 [2] https://github.com/apache/iceberg/pull/14486
