Skip to content

Commit

Permalink
[doc] Update ApplicationSecurity spec with details about securization…
Browse files Browse the repository at this point in the history 
… of temporary files with ChaCha20 in place of AES
  • Loading branch information
@evilaliv3
evilaliv3 committed Jan 2, 2025
1 parent eea5ab1 commit 6d5d7e2
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion documentation/security/ApplicationSecurity.rst
View file
Original file line number Diff line number Diff line change
Expand Up @@ -424,7 +424,7 @@ The default configuration has this feature disabled.

Encryption of temporary files
-----------------------------
Files uploaded and temporarily stored on disk during the upload process are encrypted with a temporary, symmetric AES key to prevent any unencrypted data from being written to disk. Encryption is performed in streaming mode using `AES 128-bit` in `CTR mode`. Key files are stored in memory and are unique for each file being uploaded.
Files uploaded and temporarily stored on disk during the upload process are encrypted with a ChaCha20 and temporary 256bit keys to prevent any unencrypted data from being written to disks. Key files are stored in memory and are unique for each file being uploaded.

Secure file delete
------------------
Expand Down

0 comments on commit 6d5d7e2

Please sign in to comment.