ObjectiveFS provides client-side encryption, which encrypts the data on your server before it is sent to the object store. The data stays encrypted in transit and at rest. The client-side encryption is always enabled.
For enterprise users, ObjectiveFS also supports server-side encryption on AWS using Amazon S3-managed encryption keys (SSE-S3) and AWS KMS-managed encryption keys (SSE-KMS). This guide describes how to set up ObjectiveFS to run with Amazon S3 Managed Keys
In /etc/objectivefs.env, create a file named AWS_SERVER_SIDE_ENCRYPTION
with content as AES256
# echo "AES256" > /etc/objectivefs.env/AWS_SERVER_SIDE_ENCRYPTION
Create a filesystem (one-time only) and mount the filesystem with as usual.
# sudo mount.objectivefs create myfs
# sudo mount.objectivefs myfs /ofs
If you have questions, please email us at support@objectivefs.com.
Last updated by ObjectiveFS staff, October 3, 2022
ObjectiveFS is a shared filesystem for Linux and macOS that automatically scales up and out with high performance. In production use by Fortune 500 companies since 2013.