Darren J Moffat wrote:
The problem with encrypting in place is knowing when the system is
"safe", ie when it is done.
There are lots of things in this area that are possible but they
certainly aren't in the first deliveries for this project and with all
due respect no amount of pushing by anyone will change my mind on
that. I want to first get basic crypto with simple key management
working and get that out, then look at more complex key management
systems, once we have done that then we can come back and look at "in
place encryption enabling".
Sorry, I didn't mean to imply that the zfs-crypto project should
try and solve this, just that the idea of of compressing or
decompressing an entire filesystem, after changing that attribute,
could possibly be applied to encrypting data on a disk.
Darren
_______________________________________________
zfs-discuss mailing list
zfs-discuss@opensolaris.org
http://mail.opensolaris.org/mailman/listinfo/zfs-discuss
