In conversation with radoslav.kardum@mongodb.com and shreyas.kalyan@mongodb.com, we came up with an idea split the WT KEK storage project into two parts.  The first part is smallish - to store a limited number of KEK entries in the (unencrypted) turtle file.  The second part is a bit bigger - to store a largish number of KEK entries as a regular (encrypted) WT table.  We could do the first part in the near term, allowing us to store typically a small number of keys, but certainly up to hundreds as needed.  In the longer term, we could store a virtually unlimited number of keys.

This ticket is to flesh out these ideas - not a complete design, but a page or three, enough to generate discussion and weigh the pros and cons.

Component: encryption