[wp-trac] [WordPress Trac] #43175: Discussion - Pseudonymisation
WordPress Trac
noreply at wordpress.org
Thu Apr 26 08:33:17 UTC 2018
#43175: Discussion - Pseudonymisation
-------------------------+------------------------------
Reporter: xkon | Owner: (none)
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Resolution:
Keywords: gdpr | Focuses:
-------------------------+------------------------------
Comment (by horninc):
I think what WP29 is referring to is more of KMS integration
possibilities. Key Management Services are quite common and quite easy to
implement.
It is well understood, that compromising a "server chain" will indeed
result in a data breach. This is, however, irrelevant for the given
discussion. The bottom line is that encryption key should be stored
outside web server scope (for instance), so compromising apache/nginx
would result in a leak of data, but that data would be encrypted and key
safe. Or that breach of database server would result in data leak, but not
of the encryption key which was protected outside the scope of .sql dump
and/or simple query access.
It naturally follows that a complete root-level access hack would not
protect it fully in any event, but that is also not the core aim of the
Regulation.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43175#comment:13>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list