[ https://issues.apache.org/jira/browse/KAFKA-8205?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Niten Aggarwal updated KAFKA-8205: ---------------------------------- Summary: Kafka SSL encryption of data at rest (was: Kafka SSL encryption of dataat rest) > Kafka SSL encryption of data at rest > ------------------------------------ > > Key: KAFKA-8205 > URL: https://issues.apache.org/jira/browse/KAFKA-8205 > Project: Kafka > Issue Type: Bug > Components: security > Affects Versions: 1.0.1 > Environment: All > Reporter: Niten Aggarwal > Priority: Major > > Recently we enabled SSL on our kafka cluster which earlier had SASL > PLAINTEXT. Everything works fine from both producer and consumer standpoint > as expected with one strange behavior. We noticed data in the log file is > also encrypted which we didn't thought of because SSL is meant for transport > level security not to encrypt data at rest. > It doesn't mean we have any issues with that but would like to understand > what enables to perform encrypting data at rest. Do we have a way to:- > 1) turn it off > 2) Extend the encryption algorithm if company would like to use their own key > management system and different algorithm. > After going through Kafka docs, we realized there is a KIP already in > discussion but how come it's implemented without been approved? > [https://cwiki.apache.org/confluence/display/KAFKA/KIP-317%3A+Add+transparent+data+encryption+functionality] > -- This message was sent by Atlassian JIRA (v7.6.3#76005)