Jump to: navigation, search

EncryptionInOpenstack

Encryption in OpenStack

Just some notes and bits 'n' bobs I have gathered on various encryption efforts in various projects. Ultimately this page would like to become a reasonable overview of encryption usage as it develops across OpenStack. Please edit and extend this as desired.

Nova Ephemeral

(The disks Nova creates that live on the compute node)

Summary:

Work is progressing, Barbican keymanager integration has now been accepted and merged.

Link(s) to relevant blueprints:

Link(s) to relevant reviews:

Link(s) to IRC/Other discussions:

Cinder

One line summary:

Encryption for cinder volumes was added during Havana, but not integrated into Horizon. This has initial Barbican integration for key management.

Link(s) to relevant blueprints:

Link(s) to relevant reviews:

Link(s) to IRC/Other discussions:

Notes:

Swift

One line summary:

Lots of discussions going on and spec work at the moment.

Link(s) to relevant blueprints:

Link(s) to relevant reviews:

Link(s) to IRC/Other discussions:

Notes:

Glance

One line summary:

Nothing that I could find.

Link(s) to relevant blueprints:

Link(s) to relevant reviews:

Link(s) to IRC/Other discussions:

Notes:

Glance seems to have no encryption specific stuff. It may get this from swift containers though once Swift's encryption efforts develop.

Other Stuff