When you instantiate a new provider with the flag --crypto-shred=true , you are effectively giving yourself a "Ripley Switch" for compliance (GDPR, CCPA). Deleting the volume is instantaneous, regardless of its size. A common question: Does encryption slow down storage?
apiVersion: storage.k8s.io/v1 kind: StorageClass metadata: name: ncrypt-gold provisioner: com.openstorage/ncrypt parameters: backend: "pxd" encryption: "true" kms: "vault" reclaimPolicy: "cryptshred" # Deletion does not delete keys The most exciting aspect of ncryptopenstorageprovider new is the ability to enable crypto-shredding at provisioning time. ncryptopenstorageprovider new
In the rapidly evolving landscape of cloud-native development, two concerns dominate the minds of architects and engineers: persistent storage and data encryption . As organizations migrate stateful workloads to Kubernetes, the complexity of managing volumes while maintaining a zero-trust security posture has skyrocketed. When you instantiate a new provider with the