Project

Profile

Help

Issue #9397

As a user I want to be able to rotate my encryption keys and rekey my informations

Added by spredzy 1 day ago. Updated 1 day ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Category:
-
Sprint/Milestone:
-
Start date:
Due date:
Estimated time:
Severity:
2. Medium
Version:
Platform Release:
OS:
Triaged:
No
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Pulp 3.15 brings the support for encrypting fields in the DB. This is a great step toward better security practices. Thanks team for that.

In order to go a step further with security best-practices, I would like to be able to rotate my keys periodically, and hence rekey my data.

As it's stand today I haven't see a way to do this.

History

#1 Updated by mdellweg 1 day ago

We should provide a pulpcore-manager command to replace the key.

Also there should be a strategy how to rekey in a clustered environment.

Please register to edit this issue

Also available in: Atom PDF