The problem with encrypting in place is knowing when the system is
"safe", ie when it is done.
There are lots of things in this area that are possible but they
certainly aren't in the first deliveries for this project and with all
due respect no amount of pushing by anyone will change my mind on that.
I want to first get basic crypto with simple key management working
and get that out, then look at more complex key management systems, once
we have done that then we can come back and look at "in place encryption
enabling".
Thanks for thinking about this and sharing though.
--
Darren J Moffat
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
