Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Encrypted field annotations (for things like PII, etc.) on structs? +1 #2597

Closed
Tracked by #2438
gak opened this issue Sep 3, 2024 · 1 comment
Closed
Tracked by #2438

Encrypted field annotations (for things like PII, etc.) on structs? +1 #2597

gak opened this issue Sep 3, 2024 · 1 comment
Assignees
@gak
Labels
P1 security relates to security (regardless of priority)

Comments

@gak
Copy link
Contributor

gak commented Sep 3, 2024
edited by alecthomas
Loading

  • Could also be a custom FTL type like ftl.Optional but instead ftl.Encrypted. That might have a Decrypt() func that could be used to get the underlying value explicitly when needed.
  • Possibly add semantic type annotations to fields (compatible with https://prototype.sqprod.co/#/packages/squareup.governance.v0)
  • Challenge, can we keep sensitive data encrypted as long as possible while processing it through FTL. Require explicit Decrypt or “Access” calls to retrieve plaintext.
@gak gak mentioned this issue Sep 3, 2024
Open
20 tasks
@github-actions github-actions bot added the triage Issue needs triaging label Sep 3, 2024
@ftl-robot ftl-robot mentioned this issue Sep 3, 2024
Open
@gak gak added security relates to security (regardless of priority) P1 and removed triage Issue needs triaging labels Sep 3, 2024
@gak gak self-assigned this Sep 4, 2024
@gak
Copy link
Contributor Author

gak commented Sep 9, 2024

dupe #2497

@gak gak closed this as completed Sep 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gak gak

Labels
P1 security relates to security (regardless of priority)
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gak