Add file-level encryption to Cloud Sync
A customer wants the ability to have files automatically encrypted using a common key before they are pushed up to a public cloud like Amazon or Backblaze. That way when the files arrive at the cloud provider, they will be encrypted and remain that way. Conversely, when files are pulled back down to the TrueNAS, the files are automatically unencrypted using the same common key.
The reasoning for this RFE is that the customer has have sensitive student files that they want to push to the cloud for DR purposes but they do not want those files to be unencrypted. I suspect this will be a feature most customers would want.
There also needs to be some way to back up the common keys and to share them with other TrueNAS systems.
feat(backup): Add file level encryption to the cloud sync feature
Define new cloud sync fields and tighten up intro to this section.
#1 Updated by Kris Moore about 1 year ago
- Status changed from Untriaged to Unscreened
- Assignee changed from Kris Moore to Vladimir Vinogradenko
This sounds doable. Vladimir, can you add this to the middleware for cloud-sync? Once thats done we can do it in new UI next. I'm thinking we can use the crypt function of rclone here pretty easily.
Initial doc commit: https://github.com/freenas/freenas-docs/commit/0e3f813b9277497e67ad9efb67bab2fbb76a7e88. More to come once fields are added to new UI.
New UI doc commit: https://github.com/freenas/freenas-docs/commit/575a875fef05fe505cd217f433642aedecd2878e
Warren will create PRs to improve the existing tooltips and add the missing ones.
- Status changed from Passed Testing to Done
- Needs Doc changed from Yes to No
Legacy UI doc commit: https://github.com/freenas/freenas-docs/commit/df88c14763cd2ca1a8dd15ace21c4fe9627c65bb