Table of Contents

Motivation

Cache encryption key rotation required in case of it compromising or at the end of crypto period (key validity period). in addition, such feature is required to provide support for encrypt and descrypt existing caches in the future.

...

This strategy requires changing the format of the encryption page to store the identifier (number) of the encryption key.

Comparison

	in place	copy
IO volume	2+	2
overhead	yes^{(1-2 bytes per page)}	no
performance^{(rough estimate)}	slower	faster
Implementation complexity ^{(rough estimate)}
online updates	simple	complex
topology changes	simple	complex

Copy with re-encryption design.

...

Page tree

Versions Compared

Old Version 28

New Version 29

Key

Motivation

Comparison

Copy with re-encryption design.

Page tree

Page History

Versions Compared

Old Version 28

New Version 29

Key

Motivation

Comparison

Copy with re-encryption design.