SCTL is not End2End encryption, instead SCTL is more of an envelope, in which you store secrets until they are needed, and those secrets should only remain available in plain text while the operation that needs them is active.
GNU General Public License v3.0
8
stars
2
forks
source link
Diagrams / Documentation for secret envelope flow #14
sctl-gcp encapsulates the IAM permissions model in code. I'll classify this as "complete" but would still like a document included on the reasoning behind the model.
I'll need to draft up some docs around: