Support modern encryption

diggy · January 16, 2020, 12:44pm

skerkour commented :

The two principal reasons are what you mentioned:

use in mobile/low end SBCs (like raspberry pi) which does not have aes ni, Google also switched to XChaCha20-Poly1305 for disk encryption (GitHub - google/adiantum: Adiantum and HPolyC specification and test vectors)
I feel really better using XChaCha20-Poly1305 rather than AES, because it’s a lot simpler to understand and it is a modern AEAD cipher: it supports both encryption and authentication, which allow detection of corrupted data (tink/PRIMITIVES.md at master · google/tink · GitHub)

Regarding the last point, I’m not sure if there is other mechanisms in place in badger, but AEAD encryption ‘gives for free’ the detection of corrupted data.

Regarding the breaking change, can’t it be added simply by an Options ? Like Options.EncryptionCipher and an Enum

const(
     CipherXChaCha20Poly1305 = iota
     AESCTR
}

Topic		Replies	Views
Encryption at Rest in Dgraph and Badger - Dgraph Blog Blog	6	829	May 18, 2020
Enabling Encyption on an Unencrypted Alpha Dev eng	25	1239	May 26, 2020
Encryption algorithm used for TDE does not provide integrity protection Badger kind:bug , area:security	0	778	June 28, 2022
Releasing BadgerDB v2.0 - Dgraph Blog Blog	3	818	February 4, 2020
Use pure Go zstd implementation Badger badger , kind:enhancement	24	4246	December 23, 2021

Support modern encryption

Related topics