Diagrams / Documentation for secret envelope flow

vapor-ware / sctl

SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.

GNU General Public License v3.0

8 stars 2 forks source link

Diagrams / Documentation for secret envelope flow #14

Open lazypower opened 5 years ago

lazypower commented 5 years ago

I'll need to draft up some docs around:

[x] IAM permissions
Design Decisions around encoding
Format / Flow model for the secrets as they get encoded/decoded

lazypower commented 4 years ago

sctl-gcp encapsulates the IAM permissions model in code. I'll classify this as "complete" but would still like a document included on the reasoning behind the model.