Secret Encryption
Registered by
Dave Chen
Along with the effort of encrypt keystone credential, Keystone has other senstive data that should consider to be encrypted, such as:
- consumer secret
- request_secret
- access_secret
Break the DB and get the palintext of these value will eventually allow hackers to get a project scoped token and expose everything the system has.
Blueprint information
- Status:
- Complete
- Approver:
- None
- Priority:
- Undefined
- Drafter:
- Dave Chen
- Direction:
- Needs approval
- Assignee:
- None
- Definition:
- Obsolete
- Series goal:
- None
- Implementation:
-
Unknown
- Milestone target:
- None
- Started by
- Completed by
- Morgan Fainberg
Related branches
Related bugs
Sprints
Whiteboard
(?)
