在将聊天消息存储到Firebase中之前是否需要对其加密? [英] Is it necessary to encrypt chat messages before storing it into firebase?

问题描述

据我所知，Firebase通过HTTPS连接发送数据，因此该数据已被加密.尽管Firebase提供了安全规则来保护我的数据结构，但我仍然能够在数据库中看到字符串消息.

As far as I know, Firebase sends data over an HTTPS connection, so that the data is already being encrypted. Although Firebase provides security rules to protect my data structure, I can still be able to see the string messages in the database.

我很好奇，是否在将数据推送到Firebase之前对消息进行加密是个好主意. 我应该从这个话题转到其他话题吗?

I'm just curious whether it is a good idea to encrypt messages before pushing the data to Firebase or not. Should I just move on from this topic to something else?

谢谢.

推荐答案

您似乎对Firebase数据库的工作原理有了很好的了解:存储在服务器上加密磁盘上的.如果您在设备上启用本地持久性，则

You seem to have a good grasp of how Firebase Database works: the data is encrypted in transit, and it is stored on encrypted disks on the servers. If you enable local persistence on the device, the on device data is not encrypted.

但是该应用程序的管理员可以在Firebase控制台中查看数据.如果您的应用要求管理员不能读取此数据，则需要在客户端上对其进行加密，然后再将其发送到Firebase.不久前，开发人员解释了他们在Firebase上的端到端加密聊天-talk邮件列表.

But administrators of the app can see the data in the Firebase console. If it is a requirement of your app that administrators can't read this data, then you'll need to encrypt it on the client before sending it to Firebase. A while ago a developer explained their end-to-end encrypted chat on the firebase-talk mailing list.

这篇关于在将聊天消息存储到Firebase中之前是否需要对其加密?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！