|
|
|
|
|
|
by e12e
3884 days ago
|
|
|
Wait, are you saying HE is feasible for 128 bytes of data, if you can allow seconds for de/encryption? That'd be plenty usable for read-at-startup 128 bit api keys for micro-services, disk encryption keys etc? (Granted, in this context, having a de-crypted disk at run time under a vm would be considered insecure - but still better (for some use cases) than man alternatives) |
|
|
So in practice, probably that's the case - you could use homomorphic encryption for very infrequent operations on KEKs for example.