madmatt/silverstripe-encrypt-at-rest

Enable encryption of data at rest (in database)

Maintainers

Details

github.com/madmatt/silverstripe-encrypt-at-rest

Homepage

Source

Issues

Installs: 6 298

Dependents: 0

Suggesters: 0

Security: 0

Stars: 7

Watchers: 5

Forks: 10

Open Issues: 6

Type:silverstripe-module

dev-master 2023-03-22 11:26 UTC

Requires

WTFPL bb769998b4b1c7c64a0b98753ff2d2ee1f0ab0f2

  • Matt Peel <matt.woop@silverstripe.com>

encryptionsilverstripedecryptionencrypt-at-rest

This package is auto-updated.

Last update: 2023-03-22 11:26:12 UTC

README

This module allows data to be encrypted in the database, but be decrypted when extracted from the database, using a secret key (hopefully) known only by the web server.

Note: This does not provide significant protection except in the case of database compromise. It should be used as part of a layered security strategy. This is because the key is still available on the web server, so if remote code execution is achieved by an attacker, they will be able to read both the database and the encryption key, thereby decrypting the content.

Note: This module is not yet ready for real use, it's currently v0.0.1 material.

Usage

In your DataObject, use the various field types in this module to have it encrypted. At this point, everything is stored as encrypted text.

Ensure you create a key to use for encryption/decryption. You can run the following code to generate a valid key:

$key_object = Defuse\Crypto\Key::createNewRandomKey();
$key_string = $key_object->saveToAsciiSafeString();

This key can then be set in your _ss_environment.php file:

define('ENCRYPT_AT_REST_KEY', 'defuse key here');

TODO

  • Make sure $this->value is always the unencrypted value
  • Clean up
  • EncryptedEnum needs validation
  • Extended testing
  • Test if the value is actually encrypted, before trying to decrypt
  • Merge in and release the SS4 upgrade