Hello Dr P S Brahmanandam,
Welcome to the Microsoft Q&A and thank you for posting your questions here.
Problem
I understand that you would like to deploy and test your custom encryption and decryption methods on images stored in Azure.
Solution
Everything will start from having an Azure Subscription, then, here are the best practices steps with detailed resource links to deploy and test your custom encryption and decryption methods on images stored in Azure.
- Start by creating an Azure Storage Account using the Azure Portal, Azure CLI, or Azure PowerShell. Here's a basic outline using the Azure Portal:
- Sign in to the Azure Portal.
- Navigate to Storage accounts and click "Create."
- Fill in the necessary details such as the Subscription, Resource Group, and Storage Account name.
- Choose the region and performance options based on your needs (Standard or Premium).
- Select the redundancy option (LRS, ZRS, GRS, or RA-GRS) for data durability.
- Click "Review + Create" and then "Create."
- More details can be found on the Azure Portal Storage Account Guide: https://learn.microsoft.com/en-us/azure/storage/common/storage-account-create
- Upload Images to Azure Blob Storage: Once your storage account is created:
- Go to the "Containers" section and create a new container for your images.
- Upload your images using the "Upload" button in the container.
- For more detailed instructions, refer to the guide on [managing blob containers using the Azure portal: https://learn.microsoft.com/en-us/azure/storage/blobs/storage-blob-containers-portal
- Implement Encryption and Decryption: Develop your encryption and decryption methods in your preferred programming language. You can upload these scripts to Azure Functions or use them in a local application that interacts with Azure Blob Storage. To secure the images:
- Download the image from Blob Storage.
- Encrypt the image** using your method.
- Upload the encrypted image back to Blob Storage.
- Access Control and Security: You can manage access using Shared Access Signatures (SAS) to provide temporary, secure access to the storage account without sharing your account keys. This is particularly useful if you want to allow specific users or services to access the images temporarily. Details on setting up SAS can be found on https://learn.microsoft.com/en-us/azure/storage/common/storage-sas-overview
- Testing and Validation: After implementing the encryption and decryption:
- Test the functionality by uploading and downloading images.
- Validate the encryption and decryption** to ensure data integrity and security.
References
For more reading and detailed instructions, you can refer to the full guides on creating and managing Azure Storage.
Source: https://learn.microsoft.com/en-us/azure/storage/common/storage-account-overview Accessed, 7/29/2024.
Source: Using SAS for secure access. Accessed, 7/29/2024.
Accept Answer
I hope this is helpful! Do not hesitate to let me know if you have any other questions.
** Please don't forget to close up the thread here by upvoting and accept it as an answer if it is helpful ** so that others in the community facing similar issues can easily find the solution.
Best Regards,
Sina Salam