V-38659, V-38662, V-38693: Encrypted storage exception docs
Implements: blueprint security-hardening Change-Id: I05437825ae87307ad303f1bf937c631d7a93ca8e
This commit is contained in:
parent
241f6cd074
commit
7ddd146926
11
doc/source/developer-notes/V-38659.rst
Normal file
11
doc/source/developer-notes/V-38659.rst
Normal file
@ -0,0 +1,11 @@
|
||||
**Exception**
|
||||
|
||||
Creating encrypted storage is left up to the deployer to consider and
|
||||
implement. Although encrypting data at rest on storage volumes does reduce
|
||||
the chances of data theft if the server is physically compromised, it doesn't
|
||||
provide protection from a user who is logged in while the server is running.
|
||||
|
||||
Linux systems provide various options for storage encryption. The `Linux
|
||||
Unified Key Setup`_ is a good implementation to review.
|
||||
|
||||
.. _Linux Unified Key Setup: https://en.wikipedia.org/wiki/Linux_Unified_Key_Setup
|
1
doc/source/developer-notes/V-38661.rst
Symbolic link
1
doc/source/developer-notes/V-38661.rst
Symbolic link
@ -0,0 +1 @@
|
||||
V-38659.rst
|
1
doc/source/developer-notes/V-38662.rst
Symbolic link
1
doc/source/developer-notes/V-38662.rst
Symbolic link
@ -0,0 +1 @@
|
||||
V-38659.rst
|
1
doc/source/developer-notes/V-38693.rst
Symbolic link
1
doc/source/developer-notes/V-38693.rst
Symbolic link
@ -0,0 +1 @@
|
||||
V-38482.rst
|
Loading…
Reference in New Issue
Block a user