Tuesday, July 14, 2009

Encrypting Data before Storage on Cloud

With the cloud offering almost limitless storage, most data owners end up trusting the cloud provider for confidentiality and integrity of data. There are cases when it would be desirable to encrypt data before it leaves our systems to the cloud. Many enterprise deployments are already equipped with key management solutions and this could be roped in to manage keys used to encrypt data stored on the cloud.
For the sMashup, we hooked up RSA Key Manager and EMC Atmos cloud storage. The result was a transparent API layer over the existing Atmos API. Here is how the code looks for encrypting while uploading and the reverse while downloading data. The files are available here.
The code shows how files could be uploaded and downloaded. The code could also be used as an API to encrypt and decrypt byte streams making it a stand alone API. Since it is built on top of the existing ATMOS api, it becomes easy to rope it into existing projects. Here is the demo that we used for the 90 second presentation.

1 comment:

J (Encrypted Flash Drive Guy) said...

I have read your all pages which are mention on the blog, information is really helpful. RSA Data Protection Manager helps to customize our data protection solution with encryption and tokenization ability. I also read about EMC Atmos, I think if you want to combine massive scalability with automated data placement, Atoms is the best option for you.

Post a Comment