NFR - Manage keys, tokens, passwords securely #1676
DanielaWuensch
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Feature Request
Non-functional Requirement - Manage keys, tokens, passwords securely
As a company who operates an EDC, I want to ensure all my secrets are stored in encrypted way. Secrets might be all kinds of passwords, client-secrets, certificates, ...
A secure storage is already defined by the vault, it should be used for any persistence of secrets.
E.g. the edc-config for edc.api.auth.key is just stored in clear text inside a config file. Instead this value should be read from the vault.
Further topics:
system-to-system communication should not rely on mid/long term secrets/password -> use token/mtls instead of simple api-key
automatic secret rotation without downtime
Which Areas Would Be Affected?
all, including DPF, CI, build, transfer, etc._
Why Is the Feature Desired?
Security Requirement
Solution Proposal
A secure storage is already defined by the vault, it should be used for any persistence of secrets.
Type of Issue
non-functional requirement
Checklist
all secrets, which need to be persisted, should be persisted in a vault
Beta Was this translation helpful? Give feedback.
All reactions