Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 7074B200CDD for ; Mon, 7 Aug 2017 18:23:08 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 6F0001659EC; Mon, 7 Aug 2017 16:23:08 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 8DC781659EA for ; Mon, 7 Aug 2017 18:23:07 +0200 (CEST) Received: (qmail 15100 invoked by uid 500); 7 Aug 2017 16:23:06 -0000 Mailing-List: contact java-user-help@lucene.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: java-user@lucene.apache.org Delivered-To: mailing list java-user@lucene.apache.org Received: (qmail 15087 invoked by uid 99); 7 Aug 2017 16:23:06 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd4-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 07 Aug 2017 16:23:06 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd4-us-west.apache.org (ASF Mail Server at spamd4-us-west.apache.org) with ESMTP id 9CBCCC0386 for ; Mon, 7 Aug 2017 16:23:05 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd4-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: 0.379 X-Spam-Level: X-Spam-Status: No, score=0.379 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001] autolearn=disabled Authentication-Results: spamd4-us-west.apache.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd4-us-west.apache.org [10.40.0.11]) (amavisd-new, port 10024) with ESMTP id MSuErLNtbMwc for ; Mon, 7 Aug 2017 16:23:00 +0000 (UTC) Received: from mail-lf0-f51.google.com (mail-lf0-f51.google.com [209.85.215.51]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTPS id 334545FB57 for ; Mon, 7 Aug 2017 16:23:00 +0000 (UTC) Received: by mail-lf0-f51.google.com with SMTP id m86so4015168lfi.4 for ; Mon, 07 Aug 2017 09:23:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=xQ5OjQrgp3Nz+lpbAslGAoUkim4t3N4MECKmwmsmvN0=; b=oYrYWfaZQxXXk/M/LJVBo3Kc41g30hbsms/H7wB4F27Wnegr7WNd/+T6tvKIHO4a24 wQ/7Z3ySEVss68aIgF/+JRJPqpRNdHHmSJUD7Lbfn9MInbJWOvSoQVNuk3NQ5a9saxY8 ebLaLi7EccmUD4IHLA2UM2vYosmz1iSoiuy9RghMst3LtDD815uNdATje8xhOVtVARPd uWfX4uBaB+U7oidFubIlthQVBGGEPIR3Rq98a0ImsHxGQ0M4hJV4BfFivcYpOpY+sApZ D29Qfjgj/TL/Ys9jvYm797+rO9O8LFr+75PwIVfoKmyrq15VTf9WvCFsrjRAaEgF6ufZ ac9Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=xQ5OjQrgp3Nz+lpbAslGAoUkim4t3N4MECKmwmsmvN0=; b=Y3jtyeX96t6e95P0QgJtPSbh3ceXszp7QchwNyDOKWs+R9oLMyN/4HtaBomhgTzhZv OqODAU+XheY4nDAoWPU31h8UNZPLtmEnROqBriwJhk3pfyq1DIxLC8ES5H1azdJHf21x QNyVTTHl+USIcrh5js+qzs90GTSxbtTHm26eWfTwqsUzJL+fJv88sq+41IS3g2SJLpKD Ubapvu4DdxIjBiOlkFt1+PuQWKQA+9xocu4p1XeBdidftOEhFSl5SJkwggbYivCA5dU1 4HUe4th+u/uGqDed0qdKAHqJv3hrm94UjsI52Z4SvtY7bT5jB5nmoXZ23eQqSK91qh6y bfFA== X-Gm-Message-State: AHYfb5jdA5woQW2Lb2WaCb30RIausdWgRRa+ZTPRA3WRU+1MEW1zHMWO SzwE/iCw8hN/wp1tGS+SiZdo1ieofbOj X-Received: by 10.25.31.149 with SMTP id f143mr325122lff.180.1502122978691; Mon, 07 Aug 2017 09:22:58 -0700 (PDT) MIME-Version: 1.0 Received: by 10.25.84.208 with HTTP; Mon, 7 Aug 2017 09:22:18 -0700 (PDT) In-Reply-To: References: From: Erick Erickson Date: Mon, 7 Aug 2017 09:22:18 -0700 Message-ID: Subject: Re: Encryption at lucene index To: java-user Content-Type: text/plain; charset="UTF-8" archived-at: Mon, 07 Aug 2017 16:23:08 -0000 No, since you haven't defined what you want to encrypt, what your requirements are, what you hope to get out of "encryption" etc. Put the index on an encrypting filesystem and forget about it if you possibly can, because anything else is a significant amount of work. To encrypt the searchable tokens on a per-user basis in memory is a _lot_ of work. It depends on your security needs. Otherwise, as I said, please ask specific questions as the topic is quite large, much too large to conduct a seminar through the user's list. Best, Erick On Mon, Aug 7, 2017 at 9:07 AM, Kumaran Ramasubramanian wrote: > Hi Erick, > > Thanks for the information. Any pointers about encryption options in > solr? > > > -- > Kumaran R > > > > On Mon, Aug 7, 2017 at 9:17 PM, Erick Erickson > wrote: > >> Encryption in Solr has a bunch of ramifications. Do you care about >> >> - encryption at rest or in memory? >> - encrypting the _searchable_ tokens? >> - encrypting the searchable tokens per-user? >> - encrypting the stored data (which a filter won't do BTW). >> >> It's actually a fairly complex topic the discussion at LUCENE-6966 >> outlines much of it. Please ask specific questions as you research the >> topic. One per-user encryption package that I know of is by Hitachi >> Solutions (commercial) and it explicitly does _not_ support, for >> instance, wildcards (there are other limitations too). See: >> http://www.hitachi-solutions.com/securesearch/ >> >> Most of the time when people ask for encryption they soon discover >> it's much more difficult than they imagine and settle for just putting >> the indexes on an encrypting file system. When they move beyond that >> it gets complex and you'd be well advised to consult with Solr >> security experts. >> >> Best, >> Erick >> >> On Sun, Aug 6, 2017 at 11:30 PM, Kumaran Ramasubramanian >> wrote: >> > Hi All, >> > >> > >> > After looking at all below discussions, i have one doubt which may be >> silly >> > or novice but i want to throw this to lucene user list. >> > >> > if we have encryption layer included in our analyzer's flow of filters >> like >> > EncryptionFilter to control field-level encryption. what are the >> > consequences ? am i missing anything basic? >> > >> > Thanks in advance.. >> > >> > >> > Related links: >> > >> > https://issues.apache.org/jira/browse/LUCENE-2228 : AES Encrypted >> Directory >> > - in lucene 3.x >> > >> > https://issues.apache.org/jira/browse/LUCENE-6966 : Codec for >> index-level >> > encryption - at codec level, to have control on which column / field have >> > personal identifiable information >> > >> > https://security.stackexchange.com/questions/111153/is-a-lucene-search- >> index-effectively-a-backdoor-for-field-level-encryption >> > >> > >> > A decent encrypting algorithm will not produce, say, the same first >> portion >> >> for two tokens that start with the same letters. So wildcard searches >> won't >> >> work. Consider "runs", "running", "runner". A search on "run*" would be >> >> expected to match all three, but wouldn't unless the encryption were so >> >> trivial as to be useless. Similar issues arise with sorting. "More Like >> >> This" would be unreliable. There are many other features of a robust >> search >> >> engine that would be impacted, and an index with encrypted terms would >> be >> >> useful for only exact matches, which usually results in a poor search >> >> experience. >> > >> > >> > https://stackoverflow.com/questions/36604551/adding- >> encryption-to-solr-lucene-indexes >> > >> > >> > >> > >> > >> > >> > -- >> > Kumaran R >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: java-user-unsubscribe@lucene.apache.org >> For additional commands, e-mail: java-user-help@lucene.apache.org >> >> --------------------------------------------------------------------- To unsubscribe, e-mail: java-user-unsubscribe@lucene.apache.org For additional commands, e-mail: java-user-help@lucene.apache.org