-
Sumo Logic has APIs that supports the management of access keys. It would be really nice if the provider supported the these as resources so they can be automatically provisioned/rotated/retired via T…
-
### **Key Planning**
**1. Authentication Service**
Handles user authentication and authorization using JWT & OTP.
Ensures secure access to the application and files.
Database: MongoDB (users, roles, s…
-
- [x] Protecting keys at rest
- [x] Protecting keys a boot
- [x] Protecting keys at runtime
- [ ] Sharing public keys
- [ ] Associating names with public keys
Tools include:
- IMA
- TPM PCRs
- TPM se…
-
As an admin I want to be able to create, rotate and disable signing keys for OIDC tokens manually. Keys only exist on instance level, as they represent the issuer (instance domain).
Depends on API …
-
We need to add a way to group transactions for every local net user.
This is important for the hosted version of the simulator, so every backend only works with its transactions.
For this purpose, we …
-
We're storing the encryption key in environment variables, but a more secure method might be beneficial in case of server compromise.
Some options:
- AWS Secrets Manager
- HashiCorp Vault
- …
-
To configure this demo for use, API keys are stored in a config file.
In a production environment, consider using a secure secret management system instead.
-
How do I remove a key from the keychain (or purge the keychain)? My current flow is:
User enters password in rails UI, the sidekiq worker does something like `GPGME::Key.import(File.open("#{user_id…
-
Introduce an API for storing keys in JDK KeyStore, Apple KeyChain, SecureEnclave and other places.
-
> Encryption solutions for data-at-rest will be protecting data for potentially very long periods of time. In many ways, the key management system may well be the single most important component of yo…