Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-10065

Stronger validation of key unwrapping

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • None
    • 0.98.0
    • None
    • None
    • Reviewed

    Description

      In EncryptionUtil#unwrapKey we use a CRC32 to validate the successful unwrapping of a data key. I chose a CRC32 to limit overhead. There is only a 1 in 2^32 chance of a random collision, low enough to be extremely unlikely. However, I was talking with my colleague Jerry Chen today about this. A cryptographic hash would lower the probability to essentially zero and we are only wrapping data keys once per HColumnDescriptor and once per HFile, saving a few bytes here and there only really. Might as well use the SHA of the data key and in addition consider running AES in GCM mode to cover that hash as additional authenticated data.

      Attachments

        1. 10065.patch
          11 kB
          Andrew Kyle Purtell

        Issue Links

          is related to

          New Feature - A new feature of the product, which has yet to be developed. HBASE-7544 Transparent table/CF encryption

          • Major - Major loss of function.
          • Closed

          Activity

            People

              apurtell Andrew Kyle Purtell
              apurtell Andrew Kyle Purtell
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: