NFR - Manage keys, tokens, passwords securely #1676
DanielaWuensch
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Feature Request
Non-functional Requirement - Manage keys, tokens, passwords securely
As a company who operates an EDC, I want to ensure all my secrets are stored in encrypted way. Secrets might be all kinds of passwords, client-secrets, certificates, ...
A secure storage is already defined by the vault, it should be used for any persistence of secrets.
E.g. the edc-config for edc.api.auth.key is just stored in clear text inside a config file. Instead this value should be read from the vault.
Further topics:
system-to-system communication should not rely on mid/long term secrets/password -> use token/mtls instead of simple api-key
automatic secret rotation without downtime
Which Areas Would Be Affected?
all, including DPF, CI, build, transfer, etc._
Why Is the Feature Desired?
Security Requirement
Solution Proposal
A secure storage is already defined by the vault, it should be used for any persistence of secrets.
Type of Issue
non-functional requirement
Checklist
all secrets, which need to be persisted, should be persisted in a vault
Beta Was this translation helpful? Give feedback.
All reactions