Bug 1419556
Summary: | [RFE] Full Barbican support in Swift | ||
---|---|---|---|
Product: | Red Hat OpenStack | Reporter: | Thiago da Silva <thiago> |
Component: | openstack-swift | Assignee: | Thiago da Silva <thiago> |
Status: | CLOSED ERRATA | QA Contact: | Mike Abrams <mabrams> |
Severity: | unspecified | Docs Contact: | Kim Nylander <knylande> |
Priority: | high | ||
Version: | 12.0 (Pike) | CC: | cschwede, derekh, egafford, fduthill, jjoyce, jschluet, mabrams, nlevinki, pgrist, pkilambi, scohen, slinaber, srevivo, thiago, tvignaud, zaitcev |
Target Milestone: | Upstream M3 | Keywords: | FutureFeature, Triaged |
Target Release: | 13.0 (Queens) | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | openstack-swift-2.17.1-0.20180226191257.3d12a10.el7ost openstack-tripleo-heat-templates-8.0.2-11.el7ost puppet-swift-12.3.1-0.20180221111701.5bdce0a.el7ost puppet-tripleo-8.3.0-0.20180222131528.3202394.el7ost | Doc Type: | Enhancement |
Doc Text: |
The Object Store service (swift) can now integrate with Barbican to transparently encrypt and decrypt your stored (at-rest) objects. At-rest encryption is distinct from in-transit encryption and refers to the objects being encrypted while being stored on disk.
Swift objects are stored as clear text on disk. These disks can pose a security risk if not properly disposed of when they reach end-of-life. Encrypting the objects mitigates that risk.
Swift performs these encryption tasks transparently, with the objects being automatically encrypted when uploaded to swift, then automatically decrypted when served to a user. This encryption and decryption is done using the same (symmetric) key, which is stored in Barbican.
|
Story Points: | --- |
Clone Of: | 1418439 | Environment: | |
Last Closed: | 2018-06-27 13:29:18 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 1333141, 1558058 | ||
Bug Blocks: | 1433715 |
Comment 1
Red Hat Bugzilla Rules Engine
2017-02-06 13:49:50 UTC
This bugzilla has been removed from the release and needs to be reviewed and Triaged for another Target Release. If this bug requires doc text for errata release, please set the 'Doc Type' and provide draft text according to the template in the 'Doc Text' field. The documentation team will review, edit, and approve the text. If this bug does not require doc text, please set the 'requires_doc_text' flag to -. Please note that the errata is due this week. Thank you for adding the doc text. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2018:2086 |