From 701da9ef260f3f451bd73f5829109652e587015a Mon Sep 17 00:00:00 2001 From: Quentin Dufour Date: Sat, 30 May 2020 22:32:53 +0200 Subject: [PATCH] WIP readme --- docker/bckp/README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/docker/bckp/README.md b/docker/bckp/README.md index b0b1b85..2ba9079 100644 --- a/docker/bckp/README.md +++ b/docker/bckp/README.md @@ -24,3 +24,4 @@ go run ./kv_to_s3.go - Est ce qu'on a besoin d'authentication ? - Oui en fait il y a plein d'attaques apparemment - https://blog.minio.io/data-at-rest-encryption-done-right-7446c644ddb6 --> Minio a sa solution mais elle a des requirements bizarres (une clé par fichier, il faut donc un HKDF) + - https://www.imperialviolet.org/2017/05/14/aesgcmsiv.html --> AES GCM SIV does not break crypto if you reuse nonces (but you should still try to supply unique ones to have different cipher if you encode the same plaintext twice)