[PDI-6170] As an Administrator, I want to avoid a JVM dump or define in memory encryption of data - Pentaho Platform Tracking

Details

Type: New Feature
Status: Open
Severity: Medium
Resolution: Unresolved
Affects Version/s: 4.1.2
Fix Version/s: Not Planned
Component/s: API
Labels:
- q_security

Notice:

When an issue is open, the "Fix Version/s" field conveys a target, not necessarily a commitment. When an issue is closed, the "Fix Version/s" field conveys the version that the issue was fixed in.

Description

Use case is for security reasons, avoid dumping the JVM memory etc.

Ideas:

We may think of a new storage type, delete temporarily unencrypted objects after their usage, eventually involve GC.
Or even think of a pluggable data policy on the row level. (e.g. custom plug-in checks at first time of object creation if this field (e.g. defined by the field name or other criteria defined by the custom plug-in) is defined as sensitive data and need to be encrypted).

Attachments

Issue Links

relates to

PDI-6774 As an ETL-Administrator, I want to set some security restrictions by a security level

Open

Activity

People

Assignee:

Unassigned

Reporter:

Jens Bleuel

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

08/May/11 6:04 AM

Updated:

15/Feb/16 6:00 AM