[PDI-6170] As an Administrator, I want to avoid a JVM dump or define in memory encryption of data - Pentaho Platform Tracking

XML

Word

Printable

Details

Type: New Feature
Status: Open
Severity: Medium
Resolution: Unresolved
Affects Version/s: 4.1.2
Fix Version/s: Not Planned
Component/s: API
Labels:
- q_security

Notice:

When an issue is open, the "Fix Version/s" field conveys a target, not necessarily a commitment. When an issue is closed, the "Fix Version/s" field conveys the version that the issue was fixed in.

Description

Use case is for security reasons, avoid dumping the JVM memory etc.

Ideas:

We may think of a new storage type, delete temporarily unencrypted objects after their usage, eventually involve GC.
Or even think of a pluggable data policy on the row level. (e.g. custom plug-in checks at first time of object creation if this field (e.g. defined by the field name or other criteria defined by the custom plug-in) is defined as sensitive data and need to be encrypted).

Attachments

Issue Links

relates to

PDI-6774 As an ETL-Administrator, I want to set some security restrictions by a security level

Open

Activity

People

Assignee:: Unassigned

Reporter:: Jens Bleuel

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 08/May/11 6:04 AM

Updated:: 05/Oct/21 10:49 AM