Commit Graph

58 Commits

Author SHA1 Message Date
Anton Livaja 22fa2404e5
many changes 2024-12-23 17:09:58 -05:00
Anton Livaja c4ca2d3555
add content and related docs for proposer role 2024-12-20 12:12:31 -05:00
Anton Livaja 3816a0dac6
rename provisioner document 2024-12-19 17:00:03 -05:00
Anton Livaja cc6f6d475b
include procurement steps in the provisioner document 2024-12-19 16:34:29 -05:00
Anton Livaja 46a088b1b5
refactor order of a few things and add context for SD cards and their
inclusion in air gap bundle
2024-12-19 16:05:45 -05:00
Anton Livaja 57faca72fd
add anchors for facility references 2024-12-19 15:28:10 -05:00
Anton Livaja bdaedc2f7e
fix instructions to use docker create 2024-12-19 15:04:47 -05:00
Anton Livaja b3197be647
fix sdtool doc numbering 2024-12-19 15:03:41 -05:00
Anton Livaja 5b4bbaee51
add models to provisioner doc directly 2024-12-19 14:55:39 -05:00
Anton Livaja 578e46a1bc
move sd card section 2024-12-19 14:26:27 -05:00
Anton Livaja 867dbf47a3
remove notes 2024-12-19 14:23:23 -05:00
Anton Livaja 89d08308c8
refactor the provisioner document 2024-12-18 16:58:24 -05:00
Anton Livaja fcc3bae04f
many updates 2024-12-17 17:10:10 -05:00
Anton Livaja 5489afbbed
refactor main operator doc 2024-12-16 16:45:34 -05:00
Lance Vick eb77ad63c9
Merge branch 'main' into feat/tamper-proofing-chain-of-custody 2024-12-15 19:20:48 -08:00
Anton Livaja e7ff350a38
minor updates 2024-12-15 22:04:15 -05:00
Anton Livaja 3fac96822c
update provisioner doc 2024-12-13 17:02:23 -05:00
Anton Livaja 80a4005e19
wip for end-to-end generated docs 2024-12-13 14:07:34 -05:00
Anton Livaja 59155cf4c7
refactor portable laptop doc 2024-12-10 14:28:02 -05:00
Anton Livaja fd16079f88
start anchor refactor 2024-12-09 16:32:25 -05:00
Lance Vick b705d2677a
Add boilerplate for 'make serve' 2024-12-07 17:31:54 -08:00
Anton Livaja b119b0f742
minor updates 2024-12-06 15:30:05 -05:00
Anton Livaja d98cb21934
add threat levels to tamper evidence doc 2024-12-06 15:03:07 -05:00
Anton Livaja 92e6417552
specify security level for requiring more than 1 person 2024-12-06 12:41:02 -05:00
Anton Livaja eea3a17d16
specify laptop must be sealed in a see through tamper-evident bag upon
purchase
2024-12-06 12:40:23 -05:00
Anton Livaja c93ec85e9f
add commit signature checking when building software 2024-12-06 10:51:58 -05:00
Anton Livaja fa73b09cc0
update across multiple docs 2024-12-05 18:21:11 -05:00
Anton Livaja 36a64ca6f3
refactor and clean up threat model doc 2024-12-05 15:46:29 -05:00
Anton Livaja 1e9d21dcdd
add high level threat model initial draft 2024-12-04 16:01:31 -05:00
Anton Livaja e43c65c3e8
add references to tamper proofing doc 2024-12-04 16:01:15 -05:00
Anton Livaja 930017285b
many updates 2024-12-01 14:43:04 -05:00
Anton Livaja f4424b55af
update one time use procurement and location and reusable laptop
ceremony
2024-11-30 19:38:04 -05:00
Anton Livaja 24348cc6c6
add new docs and refactor 2024-11-28 18:30:19 -05:00
Anton Livaja 9c33166409
minor updates 2024-11-27 15:46:34 -05:00
Anton Livaja 435f833387
wip for tamper proofing and chain of custody docs 2024-11-27 11:12:33 -05:00
Ryan Heywood 8e8451ec26
Containerfile: initial commit 2024-09-04 15:10:20 -04:00
Anton Livaja c771604817
docs: add some context and clean things up 2024-09-03 11:57:46 -04:00
Anton Livaja 0df2c9ce08
fix: remove duplicate command 2024-08-05 21:39:48 -04:00
Anton Livaja ebe07875b7
fix: improve tampering docs 2024-08-05 19:34:25 -04:00
Anton Livaja 51fcd742a3
fix: simplify deletion instruction at the end of the ceremony 2024-08-05 16:45:13 -04:00
Anton Livaja 7044041772
fix: add system time setting and copying pub key to operator pub key SD card 2024-08-05 16:35:09 -04:00
Anton Livaja 265add34f5
fix: update location key ceremony 2024-08-05 15:55:11 -04:00
Anton Livaja 52ebb41eb8
fix: rename location key 2024-08-05 14:13:28 -04:00
Anton Livaja d8eacdaa5b
feat: add details about tamper proofing hardware 2024-08-05 13:47:28 -04:00
Anton Livaja 46358df51e
fix: minor location key ceremony update 2024-08-05 13:47:08 -04:00
Anton Livaja e8e649983c
feat: add instructions for impregnating a smart card with seed 2024-08-04 22:27:20 -04:00
Anton Livaja 2308513309
fix: add note about setting system time 2024-08-04 20:14:42 -04:00
Anton Livaja 65d0e0269d
fix: update paths in ceremony.sh script for hybrid ceremony 2024-08-04 20:14:23 -04:00
Anton Livaja 9f8297bd0e
fix: ceremony.sh script keyfork command and pub certs path 2024-08-04 19:28:16 -04:00
Anton Livaja 25516fcd7f
fix: specify smart cards must have openpgp ed25519 support 2024-08-04 14:31:08 -04:00