New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add encrytion option to rosbag #1431
Comments
Noting related to #1285 Just some design questions to try and think about this feature (no conclusions) -
|
@emersonknapp I am curious if one would be possible to use rosbag2 conversion plugin interface https://github.com/ros2/rosbag2/blob/rolling/docs/converter_plugin_development.md to write encription/decription plugin without any changes in the rosbag2 core? At least as a quick workaround. |
The use case I am thinking is for storage of Personally Identifiable Information (PII). So, for this purpose encrypting the traffic is unnecessary. I am only thinking about storage (and not transport).
The use case I am thinking is for storage of Personally Identifiable Information (PII). So that would include any location data and anything that could perceive the driver (cameras, LiDARs, etc.) We run human-robot experiments, for which the data needs to be stored encrypted. While collecting real world data in the wild, the robot(vehicle) can be recording participant's data for prolonged duration of time (months) before we are able to upload it to storage.
Topic name, topic type, topic schema are fine to be unencrypted. Initially, I thought about encrypting the headers as well, but it seems unnecessary. |
@yathartha3 Do you actually need partially encrypted files or would an encrypted filesystem also fulfill GDPR requirements? |
@chaoflow In a real world use case where experiments (data collection) can run for months, there is a risk that if for some reason the recording node fails, or system power is interrupted before the bag files are properly closed/written, the data will be un-encrypted since it will never get to the point where it encrypts the file after the recording is complete. So in this case, even-though encrypting the filesystem would have fulfilled the GDPR requirements, it might not get to the stage of encrypting the files. Please let me know if my suggestion does not make sense. |
Description
As a rosbag2 user, I would like to encrypt the messages when I am recording the bag files. The encryption should happen while recording, as opposed to post-processing.
Completion Criteria
rosbag record
has an option to encrypt messagesrosbag play
has an option to decrypt messagesrosbag record
can get the keys (for example GPG keys from user name, or from a file location) for encryptionImplementation Notes / Suggestions
The text was updated successfully, but these errors were encountered: