Uploaded image for project: 'Mender'
  1. Mender
  2. MEN-5757

Add PKCS#11 support in mender-artifact

    XMLWordPrintable

    Details

    • Type: Epic
    • Status: In Progress
    • Priority: (None)
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:

      Description

      As of today, mender-artifact supports artifact signing using key pairs (RSA, ECDSA256) read from files, Google Cloud Key Management and Hashicorp Vault. The goal of this epic is adding support ofr PKCS#11 in mender-artifact to use any PKCS#11-compatible interface to sign a Mender Artifact.

      Acceptance criteria:

      • mender-artifact sign command supports a new option to use a pkcs#11 interface to sign the artifact, in addition to -key, gcp-kms-key and -gcp-kms-key.

        Attachments

          Issue Links

          is duplicated by

          Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. MEN-3163 Hardware security for signing

          • (None) - No priority decided
          • Rejected

            Activity

              People

              Assignee:
              tranchitella Fabio Tranchitella
              Reporter:
              tranchitella Fabio Tranchitella
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated: