Uploaded image for project: 'Mender'
  1. Mender
  2. MEN-5757

Add PKCS#11 support in mender-artifact

    XMLWordPrintable

    Details

    • Type: Epic
    • Status: Done
    • Priority: (None)
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:

      Description

      As of today, mender-artifact supports artifact signing using key pairs (RSA, ECDSA256) read from files, Google Cloud Key Management and Hashicorp Vault. The goal of this epic is adding support ofr PKCS#11 in mender-artifact to use any PKCS#11-compatible interface to sign a Mender Artifact.

      Acceptance criteria:

      • mender-artifact sign command supports a new option to use a pkcs#11 interface to sign the artifact, in addition to -key, gcp-kms-key and -gcp-kms-key.

        Attachments

          Release management

            Issue Links

            is duplicated by

            Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. MEN-3163 Hardware security for signing

            • (None) - No priority decided
            • Rejected
            relates to

            Task - A task that needs to be done. MEN-5957 mender-artifact: Document the different features supported on the different platforms

            • (None) - No priority decided
            • Open

              Activity

                People

                Assignee:
                tranchitella Fabio Tranchitella
                Reporter:
                tranchitella Fabio Tranchitella
                Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                  Dates

                  Created:
                  Updated: