Envelope encryption #153
Description
Since encryption of results that are uploaded to the Hub is mandatory now, there is an overhead because data needs to be encrypted and persisted multiple times so that multiple nodes are able to retrieve and decrypt data from the Hub. Use envelope encryption to solve this issue.
- Generate a random symmetric key (AESGCM)
- Encrypt data with with that symmetric key and upload data to the Hub
- Get public key for every recipient and encrypt the symmetric key via ECDH
- Share(?) encrypted keys with recipients