Add documentation for PKCS #11 with IBM CEX

containers / ocicrypt

Encryption libraries for Encrypted OCI Container images

Apache License 2.0

142 stars 33 forks source link

Add documentation for PKCS #11 with IBM CEX #55

Closed Jakob-Naucke closed 3 years ago

Jakob-Naucke commented 3 years ago

Documentation for backing OCIcrypt with PKCS #11 and SoftHSM2 is already available. It is also possible to do this with an IBM CryptoExpress HSM, but there are some specifics to know. Add documentation for this.

Signed-off-by: Jakob Naucke jakob.naucke@ibm.com

stefanberger commented 3 years ago

@Jakob-Naucke Great! I had used the IBM CEX for experiments previously and it helped shape the code to what it is now. I am currently away but I'll have a look at your write-up once I am back. Thanks!

Jakob-Naucke commented 3 years ago

added a paragraph separator

lumjjb commented 3 years ago

@stefanberger do you have a chance to look at this? Am good from my side, but this is your area of specialty, so will defer to you.

stefanberger commented 3 years ago

Ah, I had forgotten about this PR. Apart from that one change I requested it looks good to me.

stefanberger commented 3 years ago

LGTM.