EStore

EStore is a key-value store with authenticated encryption for data at rest. It's based on Pebble, the key-value store used in CockroachDB. EStore provides confidentiality and integrity for the database state as a whole. We call this "snapshot integrity." In contrast, other database encryption schemes typically only provide integrity at the record or file level. As a result, in those cases, attackers can modify parts of the database state unnoticed.

With these properties, EStore is particularly well suited for use with EGo to build confidential-computing apps. However, you can use EStore in any Go application to store sensitive information in a structured way.

Example

package main

import (
	"crypto/rand"
	"fmt"
	"log"

	"github.com/edgelesssys/estore"
)

func main() {
	// Generate an encryption key
	encryptionKey := make([]byte, 16)
	_, err := rand.Read(encryptionKey)
	if err != nil {
		log.Fatal(err)
	}

	// Create an encrypted store
	opts := &estore.Options{
		EncryptionKey: encryptionKey,
	}
	db, err := estore.Open("demo", opts)
	if err != nil {
		log.Fatal(err)
	}
	defer db.Close()

	// Set a key-value pair
	key := []byte("hello")
	if err := db.Set(key, []byte("world"), nil); err != nil {
		log.Fatal(err)
	}

	// Get the value of the key
	value, closer, err := db.Get(key)
	if err != nil {
		log.Fatal(err)
	}
	defer closer.Close()
	fmt.Printf("%s %s\n", key, value)
}

License

EStore is licensed under AGPL-3.0. It uses code licensed under a BSD-style license.

You can also get a commercial license and enterprise support.

Name		Name	Last commit message	Last commit date
Latest commit History 3,304 Commits
.github/workflows		.github/workflows
bloom		bloom
cmd/pebble		cmd/pebble
docs		docs
internal		internal
metamorphic		metamorphic
objstorage		objstorage
rangekey		rangekey
record		record
replay		replay
scripts		scripts
sstable		sstable
testdata		testdata
tool		tool
vfs		vfs
.editorconfig		.editorconfig
.gitignore		.gitignore
.golangci.yml		.golangci.yml
LICENSE		LICENSE
LICENSE.pebble		LICENSE.pebble
Makefile		Makefile
README.md		README.md
batch.go		batch.go
batch_test.go		batch_test.go
cache.go		cache.go
checkpoint.go		checkpoint.go
checkpoint_test.go		checkpoint_test.go
cleaner.go		cleaner.go
cleaner_test.go		cleaner_test.go
commit.go		commit.go
commit_test.go		commit_test.go
compaction.go		compaction.go
compaction_iter.go		compaction_iter.go
compaction_iter_test.go		compaction_iter_test.go
compaction_picker.go		compaction_picker.go
compaction_picker_test.go		compaction_picker_test.go
compaction_test.go		compaction_test.go
comparer.go		comparer.go
data_test.go		data_test.go
db.go		db.go
db_test.go		db_test.go
edg.go		edg.go
edg_test.go		edg_test.go
error_iter.go		error_iter.go
error_test.go		error_test.go
event.go		event.go
event_listener_test.go		event_listener_test.go
example_test.go		example_test.go
external_iterator.go		external_iterator.go
external_iterator_test.go		external_iterator_test.go
filenames.go		filenames.go
filenames_test.go		filenames_test.go
flush_test.go		flush_test.go
flushable.go		flushable.go
flushable_test.go		flushable_test.go
format_major_version.go		format_major_version.go
format_major_version_test.go		format_major_version_test.go
get_iter.go		get_iter.go
get_iter_test.go		get_iter_test.go
go.mod		go.mod
go.sum		go.sum
ingest.go		ingest.go
ingest_test.go		ingest_test.go
internal.go		internal.go
internal_test.go		internal_test.go
iterator.go		iterator.go
iterator_example_test.go		iterator_example_test.go
iterator_histories_test.go		iterator_histories_test.go
iterator_test.go		iterator_test.go
level_checker.go		level_checker.go
level_checker_test.go		level_checker_test.go
level_iter.go		level_iter.go
level_iter_test.go		level_iter_test.go
log_recycler.go		log_recycler.go
log_recycler_test.go		log_recycler_test.go
logger.go		logger.go
mem_table.go		mem_table.go
mem_table_test.go		mem_table_test.go
merger.go		merger.go
merging_iter.go		merging_iter.go
merging_iter_heap.go		merging_iter_heap.go
merging_iter_test.go		merging_iter_test.go
metrics.go		metrics.go
metrics_test.go		metrics_test.go
open.go		open.go
open_test.go		open_test.go
options.go		options.go
options_test.go		options_test.go
pacer.go		pacer.go
pacer_test.go		pacer_test.go
range_del_test.go		range_del_test.go
range_keys.go		range_keys.go
read_compaction_queue.go		read_compaction_queue.go
read_state.go		read_state.go
read_state_test.go		read_state_test.go
scan_internal.go		scan_internal.go
scan_internal_test.go		scan_internal_test.go
snapshot.go		snapshot.go
snapshot_test.go		snapshot_test.go
table_cache.go		table_cache.go

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Licenses found

Repository files navigation

EStore

Example

License

About

Licenses found

Releases 4

Packages

Contributors 2

Languages

License

Licenses found

edgelesssys/estore

Folders and files

Latest commit

History

Repository files navigation

EStore

Example

License

About

Topics

Resources

License

Licenses found

Stars

Watchers

Forks

Releases 4

Packages 0

Contributors 2

Languages

Packages