Skip to content

Restrict data transfer options for the secure data storages #1036

New issue
Jump to bottom
New issue
Jump to bottom
Closed
Closed
Restrict data transfer options for the secure data storages#1036
Assignees
rodichenkomzuevatcibinanWedds
Labels
goal/dorado ✨kind/enhancementNew feature or requeststate/has-docIssues that have documentationstate/verifyIssues that are already addressed and require validationsys/coreIssues related to core functionality (API, VM management, ...)
Milestone
 
v0.16
@sidoruka

Description

@sidoruka
sidoruka
opened on Apr 6, 2020

Background
At the moment, Cloud Pipeline allows performing upload/download operations for any authorized data storage.
But certain storages may contain sensitive data, which shall not be copied anywhere outside that storage.
Shall be considered for the object storage only

Approach

  • We shall list all the available "data-leak" routes (e.g. download from the GUI, copy to another bucket within an instance via mounts, copy via the CLI, upload to some external resource, etc.) and the ways they can be restricted
  • Add a boolean configuration option to the object storages (e.g. Sensitive storage)
  • For all the storages, marked as Sensitive - enforce the "data-leak" prevention rules, which are going to be listed in (1)

Metadata

Assignees

Labels

goal/dorado ✨kind/enhancementNew feature or requeststate/has-docIssues that have documentationstate/verifyIssues that are already addressed and require validationsys/coreIssues related to core functionality (API, VM management, ...)

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions