On Thu, 2017-12-14 at 17:12 +, Jason Bailey wrote:
> Source is attached to the ticket with sha1 hash provided.
Thanks! Finally got around it to it. Vote is started at
https://lists.apache.org/thread.html/427cddf36770db63bd0efc9704edf715
ac72d5986f287fdb9a7f353b@%3Cdev.sling.apache.org%3E
Source is attached to the ticket with sha1 hash provided.
-Jason
-Original Message-
From: Robert Munteanu [mailto:romb...@apache.org]
Sent: Thursday, December 14, 2017 11:58 AM
To: dev@sling.apache.org
Subject: Re: value level encryption - Donating?
EXTERNAL
On Thu, 2017-12-14 at 16
On Thu, 2017-12-14 at 16:25 +, Jason Bailey wrote:
> Robert - you mentioned " attach the bundle as a single archive
> attached to SLING-7255" are you looking for the compiled bundle or a
> repository archive?
Sorry, that should be the source code :-)
Robert
PM
To: dev@sling.apache.org
Subject: Re: value level encryption - Donating?
EXTERNAL
Hi again Jason,
I took a quick look at the code and here are my suggestions before starting the
official donation process:
1. Merge the two bundles into a single one
The separation from an API point of view is sound, but I'
t;
> > >
> > > Current JIRA for donating
> > > https://issues.apache.org/jira/browse/SLING-7255
> > >
> > > Source Code for donation
> > > https://github.com/JEBailey/sling-encrypt
> > >
> > >
> > > -Original Message-
> > >
//issues.apache.org/jira/browse/SLING-7255
> >
> > Source Code for donation
> > https://github.com/JEBailey/sling-encrypt
> >
> >
> > -Original Message-
> > From: Antonio Sanso [mailto:asa...@adobe.com.INVALID]
> > Sent: Tuesday, December 05,
ed resources with the EncryptableValueMap
> > and using the encrypt(propertyName) method. Which will re-encrypt
> > the property with the new primary.
> >
> > I'm running with the AES/GCM because it provides the best overall
> > security and fits my use cases and
support should alleviate some
> concerns as well.
>
> -Jason
>
> -Original Message-
> From: Antonio Sanso [mailto:asa...@adobe.com.INVALID]
> Sent: Tuesday, November 21, 2017 5:37 AM
> To: dev@sling.apache.org
> Subject: Re: value level encryption - Donating?
>
, November 21, 2017 5:37 AM
To: dev@sling.apache.org
Subject: Re: value level encryption - Donating?
EXTERNAL
hi Jason,
I basically see 3 options:
* ship with AES/CBC that is ok but suboptimal
- ship with AES-GCM that is good but has the problem of the nonce highlighted
before. The key rotation would
ct: Re: value level encryption - Donating?
EXTERNAL
Hi,
On Mon, Nov 20, 2017 at 2:50 PM, Jason Bailey <jason.bai...@sas.com> wrote:
> https://github.com/JEBailey/sling-encrypt ...
Just a naming nitpick, I think EncryptableValueMap would be a more accurate
name than EncryptionValueMa
Will work on that today.
-Original Message-
From: Bertrand Delacretaz [mailto:bdelacre...@apache.org]
Sent: Tuesday, November 21, 2017 5:48 AM
To: dev <dev@sling.apache.org>
Subject: Re: value level encryption - Donating?
EXTERNAL
Hi,
On Tue, Nov 21, 2017 at 11:37 AM, Antonio
Subject: Re: value level encryption - Donating?
EXTERNAL
hi Jason,
I basically see 3 options:
* ship with AES/CBC that is ok but suboptimal
- ship with AES-GCM that is good but has the problem of the nonce highlighted
before. The key rotation would help but than what do you do on rotation
Hi,
On Mon, Nov 20, 2017 at 2:50 PM, Jason Bailey wrote:
> https://github.com/JEBailey/sling-encrypt ...
Just a naming nitpick, I think EncryptableValueMap would be a more
accurate name than EncryptionValueMap.
Also, isn't the use of a client-side form parameter like
Hi,
On Tue, Nov 21, 2017 at 11:37 AM, Antonio Sanso
wrote:
>... I basically see 3 options:..
How about factoring out the actual encryption providers in separate
bundles? This would allow us to accept this contribution and discuss
them separately.
The sling-encrypt
ent: Monday, November 20, 2017 3:07 PM
> To: dev@sling.apache.org
> Subject: Re: value level encryption - Donating?
>
> EXTERNAL
>
> hi Jason,
>
> I get your point
> On Nov 20, 2017, at 4:57 PM, Jason Bailey <jason.bai...@sas.com> wrote:
>
>> Thanks Antonio. I had co
, 2017 3:07 PM
To: dev@sling.apache.org
Subject: Re: value level encryption - Donating?
EXTERNAL
hi Jason,
I get your point
On Nov 20, 2017, at 4:57 PM, Jason Bailey <jason.bai...@sas.com> wrote:
> Thanks Antonio. I had considered doing GCM, but I hesitated since it's not
> listed a
Monday, November 20, 2017 10:29 AM
> To: dev@sling.apache.org
> Subject: Re: value level encryption - Donating?
>
> EXTERNAL
>
> hi Jason,
>
> thanks a lot for the donation.
> I already commented on the issue, just pasting inline part of the comment
> though
>
> On
Message-
From: Antonio Sanso [mailto:asa...@adobe.com.INVALID]
Sent: Monday, November 20, 2017 10:29 AM
To: dev@sling.apache.org
Subject: Re: value level encryption - Donating?
EXTERNAL
hi Jason,
thanks a lot for the donation.
I already commented on the issue, just pasting inline part
hi Jason,
thanks a lot for the donation.
I already commented on the issue, just pasting inline part of the comment though
On Nov 20, 2017, at 2:50 PM, Jason Bailey wrote:
> So I'm just about done implementing this.
>
> https://github.com/JEBailey/sling-encrypt
>
> Value
Hi Jason,
please first create an according JIRA and link the PR there.
Thanks,
Konrad
> On 20. Nov 2017, at 14:50, Jason Bailey wrote:
>
> So I'm just about done implementing this.
>
> https://github.com/JEBailey/sling-encrypt
>
> Value level encryption. IV is stored
So I'm just about done implementing this.
https://github.com/JEBailey/sling-encrypt
Value level encryption. IV is stored inline so there's no repetition. Accessing
encrypted data via the EncryptionValueMap will decode it automatically on
access and will handle automatically encrypting values
21 matches
Mail list logo