Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implement Hashing and signing for log #18

Open
5 tasks
Tracked by #2
acn-dgopa opened this issue Jun 16, 2023 · 0 comments
Open
5 tasks
Tracked by #2

Implement Hashing and signing for log #18

acn-dgopa opened this issue Jun 16, 2023 · 0 comments

Comments

@acn-dgopa
Copy link
Member

Description

Hashing of a selected set of properties together with signing the hash reduces the chance that logs have been tampered with.
https://learn.microsoft.com/en-us/dotnet/standard/security/cryptographic-signatures

Use SHA384 to Hash values.

Use RSA to sign HASH.

Do we need to support rotation of certificates. How should we know which certificates to

###Analysis

  • Analyze and find out what are the list of values that need to be included in Hash.

Tasks

  • Implement Hashing service
  • Add hash, signature and reference to certificate/key fields in database
  • Update function to store the new fields in database

Acceptance Criteria

  • Hashing is implemented
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
Status: 📈 Backlog
Development

No branches or pull requests

1 participant