Details
-
Type:
Epic
-
Status: Done
-
Priority:
(None)
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Labels:
-
Epic Name:PKCS#11 in mender-artifact
-
Epic Total Estimate:19
-
Plan:Open source, Starter, Professional, Enterprise
-
DoD:
Description
As of today, mender-artifact supports artifact signing using key pairs (RSA, ECDSA256) read from files, Google Cloud Key Management and Hashicorp Vault. The goal of this epic is adding support ofr PKCS#11 in mender-artifact to use any PKCS#11-compatible interface to sign a Mender Artifact.
Acceptance criteria:
- mender-artifact sign command supports a new option to use a pkcs#11 interface to sign the artifact, in addition to -
key,gcp-kms-key and-gcp-kms-key.