« Previous | Next » 

Revision b123fb31

IDb123fb3152d57914d94e56e34fbcb2c01b104d20
Parent 87ed6b79
Child 925ad2e1

Added by Helga Velroyen about 10 years ago

Detailing SSH part of 'desing-node-security'

This patch elaborates the node security design wrt to SSH
key handling to make sure it is feasible before starting
the implementation.
In this updated design the first and more simple proposal
of simply removing the private root key from normal nodes
was abandoned, because the implementation of various
node operations (adding/removing, promoting/demoting)
turned out to contain too many security problems so that
the second proposal, where each node get's a separate
key pair was chosen to be implemented.

Signed-off-by: Helga Velroyen <>
Reviewed-by: Klaus Aehlig <>

Files

  • added
  • modified
  • copied
  • renamed
  • deleted

View differences