search

pingcap / tidb

TiDB is an open-source, cloud-native, distributed, MySQL-Compatible database for elastic scale and real-time analytics. Try AI-powered Chat2Query free at : https://www.pingcap.com/tidb-serverless/
https://pingcap.com
Apache License 2.0
36.98k stars 5.82k forks source link

End-to-End Encryption #18210

Open shenli opened 4 years ago

shenli commented 4 years ago

Feature Request

Is your feature request related to a problem? Please describe:

No

Describe the feature you'd like:

Snowflake provides end-to-end encryption. https://docs.snowflake.com/en/user-guide/security-encryption.html#end-to-end-encryption

End-to-end encryption (E2EE) is a form of communication in which no one but end users can read the data. In Snowflake, this means that only a customer and the runtime components can read the data. No third parties, including Snowflake’s cloud computing platform or any ISP, can see data in the clear.

I think this is the most security from the user's aspect. I am not sure whether this could be done with the MySQL protocol.

Describe alternatives you've considered:

Teachability, Documentation, Adoption, Migration Strategy:

zz-jason commented 4 years ago

releated to https://github.com/pingcap/tidb/issues/18084