Doc: Namespace/Quorum based encryption key generation

lrvick commented

2025-01-29 01:59:08 +00:00

Owner

In the doc where we provision namespaces, include extra commands to generate an openpgp key on that root entropy, and export the public key for it which will also be committed to the repo, allowing secrets to be encrypted to that namespace at any time in the future without it being hot.

lrvick added this to the Vaulting Framework Documentation milestone 2025-01-29 02:00:33 +00:00

ryan changed title from ~~Doc: Namespace encryption~~ to Doc: Namespace-based encryption of new artifacts

2025-01-29 02:06:36 +00:00

ryan changed title from ~~Doc: Namespace-based encryption of new artifacts~~ to Doc: Namespace-based encryption key generation

2025-01-29 02:07:00 +00:00

anton changed title from ~~Doc: Namespace-based encryption key generation~~ to Doc: Namespace/Quorum based encryption key generation

2025-01-29 08:28:01 +00:00

anton commented

2025-01-29 08:28:56 +00:00

Owner

This should be added to both the Namespace Entropy Ceremony and Quorum Entropy Ceremony

anton added this to the Custody Framework project 2025-01-29 08:29:02 +00:00

anton referenced this issue

2025-01-29 08:53:35 +00:00

Organization disaster recovery PGP keypair ceremony #39

anton self-assigned this 2025-01-29 09:51:14 +00:00

anton added the

qvs

level-2

labels 2025-01-29 11:01:16 +00:00

anton commented

2025-01-29 12:02:17 +00:00

Owner

#45

https://git.distrust.co/public/docs/pulls/45

Doc: Namespace/Quorum based encryption key generation #41