Transparent Storage Encryption in Kubernetes
Research output: Contribution to book/conference proceedings/anthology/report › Conference contribution › Contributed › peer-review
Contributors
Abstract
Cloud computing and therefore storage in the cloud became more widespread. The ease of use, as well as the fact that the cloud is a key building block for 5G applications, has accelerated this development. Security and privacy is also a major issue in the cloud environment. To address this issue, we have developed a transparent data encryption for data at rest, especially designed for the use with cloud storage. In order to adapt the architecture to the security requirements and the requirements in the cloud environment, a STRIDE threat model was created for the time being. The architecture was then designed based on this threat model. The tool is able to encrypt storage. It is possible to choose between different encryption algorithms. An important design step was the separation of the key management from the data storage. Performance measurements of the implementation were performed to ensure usability. These measurements show that the slowdown caused by the introduction of encryption is small enough for most scenarios.
Details
Original language | English |
---|---|
Title of host publication | European Wireless Conference, EW 2022 |
Publisher | VDE Verlag, Berlin [u. a.] |
Pages | 53-58 |
Number of pages | 6 |
ISBN (electronic) | 9781713865698 |
ISBN (print) | 978-3-8007-6001-5 |
Publication status | Published - 2022 |
Peer-reviewed | Yes |
Conference
Title | 2022 European Wireless Conference, EW 2022 |
---|---|
Duration | 19 - 21 September 2022 |
City | Dresden |
Country | Germany |
Keywords
ASJC Scopus subject areas
Keywords
- B5G, cloud computing, cryptography, edge computing, implementation, kubernetes