Added support for encryption at the virtual file system level in ClickHouse, implementing data encryption at rest using the AES-CTR algorithm.
Why it matters
This feature addresses the need for securing stored data by encrypting it directly at the file system level within ClickHouse. It ensures that data at rest is protected from unauthorized access, enhancing data security and compliance with data protection standards.How to use it
Users can enable encryption at the virtual file system level by configuring ClickHouse to use AES-CTR encryption. This typically involves setting specific parameters in the configuration file to activate the encrypted virtual file system, ensuring that all data written to disk is encrypted transparently.