Task #331
closed
Encrypt confidential storage
100%
Description
Local password (system password and etc.) encrypt to confidential storage.
Updated by Ondřej Kopr about 7 years ago
Crypt value saved into confidential storage with key from file (resources), method save in confidential storage.
Decrypt value read from confidential storage with key from file (resources), method read in confidetial storage.
Create demo file with resources (show warning to log when use this file).
Add some information into install documentation (create new file with key and etc.).
Updated by Ondřej Kopr about 7 years ago
- % Done changed from 0 to 80
Implement new service - CryptService with encrypt and decrypt serializable value (test on collection),
also create method for crypt simple string with base64 encode and decode.
Create key stored in resource, this key is loaded as SecureKey.
Crypt service is now placed into confidential storage for encrypt and decrypt value stored in.
Algorithm: AES try with diff key (Only 64bit ~16 chars)
Updated by Ondřej Kopr about 7 years ago
- Status changed from New to Needs feedback
- Assignee changed from Ondřej Kopr to Vít Švanda
- % Done changed from 80 to 90
After discussion with ZB is key for AES sufficient. Please check my solution and try to generate primary key. Thank you.
Updated by Vít Švanda about 7 years ago
- Status changed from Needs feedback to In Progress
- Assignee changed from Vít Švanda to Ondřej Kopr
- Target version set to Citrine (7.3.0)
- % Done changed from 90 to 100
- I added name of required file to warning (key.key).
- I see nice documentation in Admin guide, but documentation in https://proj.bcvsolutions.eu/ngidm/doku.php?id=navrh:confidential-storage missing. Please supplement it (and colse this task).
Updated by Ondřej Kopr about 7 years ago
- Status changed from In Progress to Resolved
Add some information about confidetial storage into documentaion (en + cz)