General Practice for File Storage

July 19, 2016 299 views
Storage DigitalOcean PHP Ubuntu


I'm setting up a Digital Ocean droplet for a client and I'm curious as to what's the best practice for secure document storage. The files we'll be uploading are sensitive and need to be very secure.

Should I pursue storing these files in the cloud on Amazon S3 or something like that, and retrieving them and streaming them to the clients browser, or should I store the files on the droplet?

What are the pros and cons of both?


1 Answer

If you plan on storing sensitive files on your droplet, then I recommend starting off by using encrypted volumes with your droplet. I believe you can also use that on the new block storage feature (on a supported DO computer center). Again, this is just a starting point for securing your data, as you also need to secure connection and access controls.

by Justin Ellingwood
Encrypting your data is a great way to ensure that nobody will have access to your sensitive information if they ever get access to your server. There are many possible uses for this, such as making it easier to decommission servers with sensitive data, storing uncommonly accessed but important files, etc. In this guide, we will discuss how to use dm-crypt to create create an encrypted volume out of a regular empty file.
  • Thank you for this, so are you saying storing on the Droplet is advisable rather than using the Cloud? Again pros and cons would be great.

Have another answer? Share your knowledge.