users@kafka.apache.org; Josh Wo
Subject: Re: security: encryption at rest and key rotation idea
For the offset, at the start of topic (and perhaps periodically in the
topic), the script could make a note of the corresponding offset in the
previous topic. The consumer could then see the correspondence betwee
dec and JMX for cleaner thread invocation and things will be
taken care of transparently?
Any interesting from other users of this proposal?
Thanks,
Josh
From: Jim Hoagland
Sent: Wednesday, January 20, 2016 11:00 AM
To: users@kafka.apache.org; Josh
ailbox
On Wed, Jan 20, 2016 at 12:34 AM, Josh Wo wrote:
> We are trying to deploy kafka into EC2 and one of the requirement from
> infosec is to have kafka encryption at rest (stored with encrypted value). We
> also need to be able to rotate encryption keys and re-encrypt all the
&g
We are trying to deploy kafka into EC2 and one of the requirement from infosec
is to have kafka encryption at rest (stored with encrypted value). We also need
to be able to rotate encryption keys and re-encrypt all the messages on regular
basis since we are a financial company. The re-encryption
