I am going to process sensitive information in my app and want to prevent it from ever getting written to disk in an unencrypted form. I hope that all disks in the Google data centers are properly sanitized before being disposed of (are they?). But defense in depth never hurts.
The processing of sensitive data will occur both in front-end and back-end instances. The data has to be stored unencrypted in memory. Do the appservers running Python and Java instances use any form of unencrypted swap? SSD, hard disk, whatever. If so, I will file a feature request to provide a way to lock memory pages from being swapped out (using the mlock() system call). Note that even when there is plenty of free RAM, the OS can still swap some pages out. Alexander -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com. To unsubscribe from this group, send email to google-appengine+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
