how to securely obtain the disk encryption password
willjasen opened this issue · comments
The volume that is encrypted with cryptsetup is created that way upon stack creation, but it does not persist after a reboot.
Perhaps this could be tied to the SSH key already assigned to the instance?
For now and security, give instructions on how to SSH into the instance and issue the command to mount the encrypted volume.
It feels too risky to let the password remain on the unencrypted disk of the instance, so it should be supplied by the user. The only other alternative would be to use PKI disk encryption.
This issue becomes somewhat moot given that the data exists in encrypted form on an application level layer and that this infrastructure is meant to be ephemeral anyways.