Talks
Speakers
Events
Topics
Sign in
Home
Talks
Speakers
Events
Topics
Leaderboard
Use
Analytics
Sign in
Suggest modification to this talk
Title
Description
ActiveRecord::Encryption; Stop Hackers from Reading your Data by Matthew Langlois, Kylie Stradley Have you ever wondered how to encrypt data in your Rails application but weren’t sure where to get started? We’ll briefly talk about why you would want to encrypt data, and then discuss how you can get started with encrypting columns in your Rails application including pitfalls and successes we encountered while implementing ActiveRecord::Encryption at GitHub. Attendees will be confident in making a decision to implement ActiveRecord::Encryption in their application.
Date
Summarized using AI?
If this talk's summary was generated by AI, please check this box. A "Summarized using AI" badge will be displayed in the summary tab to indicate that the summary was generated using AI.
Show "Summarized using AI" badge on summary page
Summary
Markdown supported
The video titled "ActiveRecord::Encryption; Stop Hackers from Reading your Data" features speakers Kylie Stradley and Matthew Langlois from GitHub, presenting their insights on data encryption within Rails applications. The discussion introduces the importance of encrypting database columns to enhance security against unauthorized access and data tampering. Key points discussed include: - **Reasons for Encryption:** The necessity of encrypting database columns arises from the need for additional defense layers against hacking and the reduction of risks associated with accidentally exposing sensitive data in logs. - **ActiveRecord Encryption Overview:** The presenters describe ActiveRecord encryption as an easy-to-use, opinionated Rails API that facilitates automatic encryption upon data saving and decryption during access. - **Migration to ActiveRecord Encryption:** The team shares their motivations for transitioning from GitHub's internal encryption strategy to ActiveRecord encryption, highlighting the need to align with Rails standards and to offer developers the ability to generate keys more autonomously. - **Key Storage and Custom Key Providers:** They explain the creation of a custom key provider that leverages a Secure Vault for key management, allowing easy key rotation and efficient key retrieval without extra developer intervention. - **Upgrading Existing Records:** Stradley and Langlois detail their approach to manage legacy data by enabling seamless upgrades for previously encrypted columns and plain text records, employing a reusable transition framework for batch processing. - **Feature Flags and Compression Considerations:** The implementation phase discussed deploying ActiveRecord encryption with feature flags to safely mitigate race conditions during rollout. They emphasize the importance of not compressing data before encryption to maintain data integrity. - **Developer Experience:** The speakers highlight the positive feedback from developers due to the simplified process for adding encryption functionalities without manual key management tasks. In conclusion, the session provides practical insights into implementing ActiveRecord encryption effectively, making secure data handling a straightforward choice for developers while ensuring robust security practices.
Suggest modifications
Cancel
