Hello Nikolay,
> > 10. Question - CRC is read in two places encryptionFileIO and > filePageStore - what should we do with this? > > filePageStore checks CRC of the encrypted page. This required to confirm > the page not corrupted on the disk. > encryptionFileIO checks CRC of the decrypted page(CRC itself stored in the > encrypted data). > This required to be sure the decrypted page contains correct data and not > replaced with some malicious content. > I still do not see why we need CRC twice, can you please elaborate on this statement? If an attacker is able to replace the contents of an encrypted page, it means that they have access to the encryption key. What will prevent them from calculating the CRC of malicious content and then encrypting it?
