I have a key requirement for data stored in MarkLogic to use disk encryption to protect "data at rest". => https://en.wikipedia.org/wiki/Data_at_Rest
I understand that MarkLogic does not have an "encryption at rest" capability yet. I also understand that MarkLogic has an "encryption at rest" capability if using Amazon S3 storage. There's some documentation on it here. => http://docs.marklogic.com/guide/ec2/managing#id_98406 This is an admin API to retrieve the encryption method from an Amazon S3 Bucket. => http://docs.marklogic.com/admin:group-set-s3-server-side-encryption I'm curious what implementations others have made for data at rest disk encryption. The requirement stems from a need to prevent someone from opening a binary spreadsheet file that is stored in MarkLogic. Questions: 1. Is the MarkLogic data storage security service enough to prevent a hacker from gaining access to a binary spreadsheet file? 2. Is disk encryption necessary to prevent someone from opening the stored spreadsheet file? 3. How come MarkLogic does not have an encryption at rest capability that is equivalent to Oracle's offering? Here's info on the Oracle encryption at rest service. => http://www.oracle.com/us/products/database/options/advanced-security/overvie w/index.html Gary Russo Enterprise NoSQL Architect http://garyrusso.wordpress.com <http://garyrusso.wordpress.com/>
_______________________________________________ General mailing list [email protected] Manage your subscription at: http://developer.marklogic.com/mailman/listinfo/general
