yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1816054] [NEW] RFE: Token Key Store

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Lance Bragstad <lbragstad@xxxxxxxxx>
Date: Fri, 15 Feb 2019 14:55:51 -0000
Reply-to: Bug 1816054 <1816054@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

The existing Fernet implementation uses a file-backed key repository for
storing Fernet keys. A security optimization that can be made is to put
the keys into a dedicated key manager instead of having the Fernet keys
on disk.

** Affects: keystone
     Importance: Wishlist
         Status: Triaged


** Tags: fernet jwt

** Tags added: fernet

** Tags added: jwt

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Identity (keystone).
https://bugs.launchpad.net/bugs/1816054

Title:
  RFE: Token Key Store

Status in OpenStack Identity (keystone):
  Triaged

Bug description:
  The existing Fernet implementation uses a file-backed key repository
  for storing Fernet keys. A security optimization that can be made is
  to put the keys into a dedicated key manager instead of having the
  Fernet keys on disk.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1816054/+subscriptions