Chapter 13. Introduction to SSL/TLS in OpenStack Security Guide  - current - Discuss managing certificate respositories

Bug #1342345 reported by Lucas Fisher
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Security Guide Documentation
Confirmed
Wishlist
Doug Chivers

Bug Description

Consider an additional section discussing management of certificate repositories. In Alice's use case in Ch 14 it discusses cleaning the repository of public CAs. This definitely should be brought out in front. Such a section could also include awareness of multiple repositories, examples of the repositories that could be encountered in OpenStack, why and why not to password protect repositories, what should and should not be included in the repository, what certificates should be marked as trusted, and perhaps options for more secure storage of keys (PKCS11?).
-----------------------------------
Built: 2014-07-15T19:04:52 00:00
git SHA: f7711cc343e504283676dfe43afae6faa9046fd7
URL: http://docs.openstack.org/security-guide/content/introduction-to-ssl-tls.html
source File: file:/home/jenkins/workspace/security-doc-tox-doc-publishdocs/security-guide/ch_introduction-to-ssl-tls.xml
xml:id: introduction-to-ssl-tls

Tags: sec-guide
Bryan D. Payne (bdpayne)
Changed in openstack-manuals:
status: New → Confirmed
importance: Undecided → Medium
Tom Fifield (fifieldt)
Changed in openstack-manuals:
importance: Medium → Wishlist
N Dillon (sicarie)
Changed in openstack-manuals:
assignee: nobody → Doug Chivers (doug-chivers)
Ian Cordasco (icordasc)
affects: openstack-manuals → ossp-security-documentation
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.