Hello, I have been reading carefully several topics and finally I can’t find how I can create an asymmetric repository using public/private keys. I came to this conclusion because my server is not secure/private and I want to prevent network administrators from being able to restore the data.
I have read the following related topics:
-
Support unattended encrypted backups without key disclosure (Support unattended encrypted backups without key disclosure · Issue #533 · restic/restic · GitHub)
-
Support asymmetric backups (Support asymmetric backups · Issue #187 · restic/restic · GitHub)
…but I still can’t find a topic that explains how to implement what I’m telling you about…
Thank you very much…
The issue(s) you’ve already found show that restic currently does not support asymmetric encryption. It currently uses a master key for both encryption and decryption, and this master key is accessed using a password with the key files in the repository. So currently the encryption restic uses is symmetric, which as I understand it does not meet the specific use case you explained above. Sorry!