Databricks Community

SreedharVengala · ‎07-26-2021

Is there a way to Decrypt / Encrypt Blob files in Databricks using Key stored in Key Vault.

What libraries need to be used?

Any code snippets? Links?

SreedharVengala · ‎09-14-2021

Thanks Kaniz... we got this working now using gnupg within databricks notebook.

Regards

Sreedhar

Andy_Canada · ‎10-06-2021

Hi @Sreedhar Vengala , we are trying the same can you share some sample code on how we can achieve the same, and did you pick the files from ADLS and placed back the encrypted files to ADLS folders

Databricks_PGP_ · ‎11-16-2021

Hi Team, Could anyone please help me on how to decrypt PGP keys using Azure Keyvault in Azure Databricks notebook.

Databricks_PGP_ · ‎11-22-2021

@Kaniz Fatma

Could you please share the decryption script on how to decrypt PGP keys using Azure Keyvault in Azure Databricks notebook.

Databricks_PGP_ · ‎12-03-2021

@Kaniz Fatma

We are looking to decrypt using Azure Databricks notebook...the above git hub link is using Azure functions and .net libraries.

Could you please help on the same ?

Alwin1 · ‎04-06-2022

@Kaniz Fatma

Is the key generated via OpenPGP (Private and Public) or Python?

Alwin1 · ‎04-07-2022

@Kaniz Fatma

Thank you.

Where is the key pairs were generated ? is it Python in Databricks or OpenPGP that created the key pairs?

TKD · ‎06-27-2022

Hi @Kaniz Fatma ,

I used the code that you've given above to encrypt the file, however, I am facing some issues as below:

I generated a key from azure portal (under key vault - > keys -> generate new key) which then I downloaded (download public key) and stored it into a secret which I retrieved in Databricks using dbutils.secrets.get and stored in a variable called publicb64. The file with public key in it I got was .PEM file and had beginning with data "-----BEGIN PUBLIC KEY----- a long alphanumeric string -----END PUBLIC KEY-----" . While executing pub_key.parse(KEY_PUB), it gives ValueError: Expected: ASCII-armored PGP.
Used Kleopatra software to generate a PGP key pair which had a file format .asc and I uploaded it to a new secret in key vault. I used the same method to fetch this key in Databricks. It had a format as "-----BEGIN PGP PRIVATE KEY BLOCK--------- a long alphanumeric string -----END PGP PRIVATE KEY BLOCK----------" . With this, I am getting this error at the stage of encrypted_message = pub_key.encrypt(msg), and the error is "PGPError: Expected: is_public == True. Got: False"

I am looking out for the actual file format of a public key which we can use and the code can work. Is there a specific source you would like me to go to generate this public key file? Your advice on this will be a highly appreciated.

Edthehead · ‎01-28-2023

This blog will help. https://medium.com/@anupamchand/pgp-encryption-using-python-in-azure-databricks-ef4bd56145ed. We used bash script within databricks to get this working. Bash is good good for large files. We tested upto 2GB and it worked fine. With plain python you will run into OOM errors.

Anonymous · ‎07-05-2022

I am looking for similar requirements to explore various options to encrypt/decrypt the ADLS data using ADB pyspark. Please share list of options available.

Databricks Community

PGP Encryption / Decryption in Databricks

Connect with Databricks Users in Your Area

Meet the Databricks MVPs

Databricks training invests in closing the data + AI skills gap across enterprises

Insights from a global survey of 1,100 technologists and interviews with 28 CIOs

Data + AI Summit: Call for Presentations

Season's Speedings: Databricks SQL Delivers 4x Performance Boost Over Two Years