Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

🔧 Password-based encryption of SEDA key file #368

Open
4 tasks
hacheigriega opened this issue Sep 30, 2024 · 0 comments
Open
4 tasks

🔧 Password-based encryption of SEDA key file #368

hacheigriega opened this issue Sep 30, 2024 · 0 comments
Labels
priority: low Should only be scheduled if it's important relative to other issues type: chore 🔧 No production code change

Comments

@hacheigriega
Copy link
Member

hacheigriega commented Sep 30, 2024
edited by Thomasvdam
Loading

🔧 Chore

In addition to storing the SEDA key file in plain text, we will provide a basic password-based encryption flow. Validator node operators can supply a password as an environment variable which is then used by the node to encrypt/decrypt the key file.

  • Document env var name and functionality
  • When the env var is set and new keys are generated the file that is written to disk is encrypted with the given password
  • When the env var is set during regular operation the node will read the contents of the keyfile and attempt to decrypt them with the supplied password.
  • When the env var is not set the file is treated as plain text.
@hacheigriega hacheigriega added the type: chore 🔧 No production code change label Sep 30, 2024
@hacheigriega hacheigriega mentioned this issue Sep 30, 2024
Merged
@mariocao mariocao added the priority: low Should only be scheduled if it's important relative to other issues label Oct 3, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
priority: low Should only be scheduled if it's important relative to other issues type: chore 🔧 No production code change
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mariocao @hacheigriega