Teleport should allow for encrypting Session Recordings via public key before shipping off to S3-compatible storage. It is understood that encrypted recordings would be unplayable in the web UI. The tsh play command would be updated to accept the private key used for decryption.
What problem does this solve?
Will allow for customer to ensure even if session storage is compromised they will not be able to be played by an unauthorized actor.
webvictim
commented
6 days ago
What would you like Teleport to do?
Teleport should allow for encrypting Session Recordings via public key before shipping off to S3-compatible storage. It is understood that encrypted recordings would be unplayable in the web UI. The
tsh playcommand would be updated to accept the private key used for decryption.What problem does this solve?
Will allow for customer to ensure even if session storage is compromised they will not be able to be played by an unauthorized actor.