Uploaded image for project: 'Red Hat OpenStack Services on OpenShift'
  1. Red Hat OpenStack Services on OpenShift
  2. OSPRH-18875

[Adoption] Document: Proteccio HSM Integration for Barbican

XMLWordPrintable

    • Icon: Epic Epic
    • Resolution: Done
    • Icon: Major Major
    • rhos-18.0.14 FR 4
    • None
    • None
    • None
    • [Adoption] Implement: Proteccio HSM Integration for Barbican
    • False
    • Hide

      None

      Show
      None
    • False
    • RHOSSTRAT-946Feature - Proteccio HSM Adoption
    • Not Selected
    • Proposed
    • Proposed
    • Done
    • RHOSSTRAT-946 - Feature - Proteccio HSM Adoption
    • Proposed
    • rhos-ops-platform-services-security
    • Proposed
    • 0% To Do, 0% In Progress, 100% Done

      Goal

      This epic tracks the work to implement the adoption of a Proteccio HSM as a secure backend for the Barbican (Key Manager) service, migrating from a legacy RHOSP 17.1 environment to RHOSO 18.

      Scope & Approach

      This work involves creating the necessary documentation to enable and configure the PKCS11/Proteccio HSM backend in Barbican via the OpenStackControlPlane CR.

      Documentation Note

      The documentation for this epic should extend the current Barbican adoption documentation, which only covers the simple_crypto backend. It needs to include the specific steps and configurations required for the Proteccio HSM.

      Key Tasks

      • Create the documentation page detailing the end-to-end adoption procedure.
      • Manually verify the successful storage and retrieval of secrets from the HSM.

              rh-ee-mharley Mauricio Harley
              ggrasza@redhat.com Grzegorz Grasza
              Mauricio Harley
              rhos-dfg-security
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: