OpenStack Compute (Nova)

Secure Secret Storage

Registered by justinsb on 2012-04-26

(The only S3 you need to know)

Storing crypto secrets in Keystone, which are unlocked by the action of authenticating, so that the secret is not actually stored (unencrypted) anywhere.

Those secrets can then be used by any service authenticating with Keystone, so e.g. Swift can encrypt images.

Blueprint information

Status:
Complete
Approver:
None
Priority:
Undefined
Drafter:
None
Direction:
Needs approval
Assignee:
None
Definition:
Obsolete
Series goal:
None
Implementation:
Unknown
Milestone target:
None
Completed by
Vish Ishaya on 2012-05-01

Related branches

Sprints

Whiteboard

good idea, but this should be proposed to keystone, not nova.

Sorry! Moved to https://blueprints.launchpad.net/keystone/+spec/secure-secret-storage

(?)

Work Items

This blueprint contains Public information 
Everyone can see this information.

Subscribers

No subscribers.