docs: add a short guide on security.

[thruflo]

Covering data access and encryption:
https://deploy-preview-2201--electric-next.netlify.app/docs/guides/security

[netlify]

✅ Deploy Preview for electric-next ready!

Name	Link
🔨 Latest commit	5a54426
🔍 Latest deploy log	https://app.netlify.com/sites/electric-next/deploys/67657d5ac403d0000819c6f6
😎 Deploy Preview	https://deploy-preview-2201--electric-next.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[KyleAMathews]

I suggest we make it clear that not locking down access is a very bad thing :-D

I'm also skeptical of the value of the key distribution example? It doesn't seem particularly useful in real-world e2e encrypted apps? Unless I'm missing something.

[KyleAMathews]

I don't have a lot of experience with key distribution but isn't storing the key (unencrypted) alongside the encrypted data more-or-less make it basically the same as if it wasn't encrypted? Since anyone with access to the db can now decrypt whatever data they want?

[thruflo]

You could store keys in a different database and just sync the right ones. I do think that the point of Electric being good to sync keys is valid: it's just like the distributed config case. You need to share the right keys with the right users. What better mechanism?

[KyleAMathews]

🤷 like I said I dunno — maybe if the key is encrypted before sharing so it's just a backup/cloud syncing mechanism.

[thruflo]

Have jigged the description a bit.

[thruflo]

Ultimately for e2e encryption you need to get keys into the client.

[KyleAMathews]

you can have client-generated keys right?

[thruflo]

Yup, but if you're sharing the data, you have to share keys.

[KyleAMathews]