changhu-m commented on issue #47435: URL: https://github.com/apache/arrow/issues/47435#issuecomment-3234413110
Thanks for confirming, @rok. > I'd prefer the first option as it doesn't weaken our encryption. Can you help me understand why a using a single DEK weaken the encryption? In my use case, we do encrypt the DEK and pass it in a secure channel. In a thought experiment, can users do exactly what the Arrow library does, but just do it external to the library and then pass in the key? I am not a security expert, so please educate me. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
