Uploaded image for project: 'Cluster Integration and Delivery'
  1. Cluster Integration and Delivery
  2. CLID-367

Public Key mirroring for offline verification

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • None
    • oc-mirror
    • Rekor Public Key Mirroring
    • Product / Portfolio Work
    • OCPSTRAT-2160[Phase 2: Cosign support] oc-mirror v2: Public key mirroring for offline verification (rekorKey)
    • 80% To Do, 20% In Progress, 0% Done
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • None
    • None
    • None

      Overview

      • Discover and mirror Rekor's public key required for verifying signature transaction records associated with mirrored content.
      • oc-mirror provides the mirrored public keys in a standard location within the output, enabling users with appropriate system permissions (e.g., root) to copy/move them to system trust stores under “/etc“ for offline verification if desired.
      • Public key mirroring is an optional configuration to prevent potential failures related to key discovery or mirroring from blocking the overall image mirroring process.

       

              Unassigned Unassigned
              luzuccar@redhat.com Luigi Mario Zuccarelli
              None
              None
              None
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated: