Skip to content
This repository has been archived by the owner on Jul 25, 2023. It is now read-only.

Add sentinel the ability to randomly generate key for the "manual insertion" mode. — Sentinel shall require a public key, and encrypt the response with that public key before delivering it (for added security) — the owner of the private key then can decrypt the result — we can also write a helper binary for that #473

Open
v0lkan opened this issue Jul 6, 2023 · 1 comment
Open

Add sentinel the ability to randomly generate key for the "manual insertion" mode. — Sentinel shall require a public key, and encrypt the response with that public key before delivering it (for added security) — the owner of the private key then can decrypt the result — we can also write a helper binary for that #473

v0lkan opened this issue Jul 6, 2023 · 1 comment

Comments

@v0lkan
Copy link
Contributor

v0lkan commented Jul 6, 2023

No description provided.

@v0lkan v0lkan added this to Aegis Jul 6, 2023
@v0lkan v0lkan converted this from a draft issue Jul 6, 2023
@v0lkan
Copy link
Contributor Author

v0lkan commented Jul 6, 2023

The "encrypt with public key" is a by-product of one of our design decisions:

  • Sentinel will never expose any sensitive data in plaintext.

The second design decision is the fact that sentinel is the only interaction point for the Operator. The Operator cannot directly talk to Aegis Safe.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
Aegis
Status: 📋 Backlog
Milestone
No milestone
Development

No branches or pull requests
1 participant
@v0lkan