Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-3890

Create Key Management Controller Service

    XMLWordPrintableJSON

Details

    Description

      Similar to the KeyProvider interface and various backing implementations for the EncryptedWriteAheadProvenanceRepository, a generic KeyManagementControllerService should be made available so that other controller services, reporting tasks, and processors can reference it and retrieve the necessary keys to perform their cryptographic operations.

      It can be backed by a variety of implementations (file-based, static, database, HSM, etc.).

      It should have extensive auditing and granular access controls to restrict both user interaction and component interaction.

      Attachments

        Issue Links

          depends upon

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-4139 Refactor KeyProvider interface from provenance module to framework-level service

          • Major - Major loss of function.
          • Resolved
          Is contained by

          Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. NIFI-5458 Improve NiFi TLS and certificate management

          • Major - Major loss of function.
          • Resolved
          is depended upon by

          New Feature - A new feature of the product, which has yet to be developed. NIFI-3889 EncryptContent processor should add encryption metadata as attributes

          • Major - Major loss of function.
          • Resolved

          New Feature - A new feature of the product, which has yet to be developed. NIFI-3929 Allow external key management for EncryptContent processor

          • Major - Major loss of function.
          • Resolved
          is related to

          Sub-task - The sub-task of the issue NIFI-6617 Implement Encrypted Repository Shared Configuration

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-1995 Support keystores with multiple certificates by exposing alias selection in configuration

          • Major - Major loss of function.
          • Open
          relates to

          New Feature - A new feature of the product, which has yet to be developed. NIFI-10667 Add Private Key Controller Service

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              Unassigned Unassigned
              alopresto Andy LoPresto
              Votes:
              2 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: