Don't do sensitive stuff on servers you don't own. GAE is safer than most things, but you don't know what lives in logs, who has access to logs, lots of things.
Look in to services that meet HIPPA compliance for hosting, (I don’t believe GAE does at this time) Also be aware you don't know where your servers are "in the US" so you also shouldn't use GAE if you have to comply with State laws about storage or transmission of sensitive data. -----Original Message----- From: google-appengine@googlegroups.com [mailto:google-appengine@googlegroups.com] On Behalf Of Philip Sent: Monday, October 03, 2011 11:03 PM To: Google App Engine Subject: [google-appengine] Re: Keeping sensitive information in memory Check this video: http://www.youtube.com/watch?v=1SCZzgfdTBo They crush all disks. On Oct 4, 7:07 am, Alexander Konovalenko <alex...@gmail.com> wrote: > I am going to process sensitive information in my app and want to > prevent it from ever getting written to disk in an unencrypted form. I > hope that all disks in the Google data centers are properly sanitized > before being disposed of (are they?). But defense in depth never > hurts. > > The processing of sensitive data will occur both in front-end and > back-end instances. The data has to be stored unencrypted in memory. > Do the appservers running Python and Java instances use any form of > unencrypted swap? SSD, hard disk, whatever. If so, I will file a > feature request to provide a way to lock memory pages from being > swapped out (using the mlock() system call). Note that even when there > is plenty of free RAM, the OS can still swap some pages out. > > Alexander -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com. To unsubscribe from this group, send email to google-appengine+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en. -- You received this message because you are subscribed to the Google Groups "Google App Engine" group. To post to this group, send email to google-appengine@googlegroups.com. To unsubscribe from this group, send email to google-appengine+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/google-appengine?hl=en.
