[HADOOP-15952] Secure Key Handling Option with TPM2 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
- KeyStore
- security
- tpm

Tags:
key, tpm, security
Flags:

Patch

Description

Implement the option to use a TPM 2 as a KeyStoreProvider as alternative to JavaKeyStoreProvider. Key Creating and Deleting will be implemented with the TPM.

There is a Java Implementation of interfacing TPMs but only for Version 1 link. The JavaKeystoreProvider Key provisioning is (as I know it) comparable to using a TPM (Making use of Key Encryption Keys).

As mentioned Key Provisioning will be made via the KMS. Only the underlying Keys would be managed by the TPM.

(Part of a Bachelor Thesis at Hochschule Darmstadt)

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Brian Havard

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 27/Nov/18 10:41

Updated:: 28/Nov/18 13:17

Time Tracking

Estimated:

2,016h

Remaining:

2,016h

Logged:

Not Specified