Difference between revisions of "Anchor"
Robert-clark (talk | contribs) |
Tim Kelsey (talk | contribs) (adding contribution info) |
||
| Line 1: | Line 1: | ||
| + | |||
| + | = Anchor = | ||
| + | == What is it == | ||
Anchor is an ephemeral PKI system built to enable cryptographic trust in OpenStack services in a way that doesn't rely on broken provisioning and revocation mechanisms that undermine most PKI deployments. | Anchor is an ephemeral PKI system built to enable cryptographic trust in OpenStack services in a way that doesn't rely on broken provisioning and revocation mechanisms that undermine most PKI deployments. | ||
| Line 8: | Line 11: | ||
While we get around to adding more content, you may find this presentation from the Paris summit on Ephemeral PKI: http://youtu.be/jf_YOzW7I3s | While we get around to adding more content, you may find this presentation from the Paris summit on Ephemeral PKI: http://youtu.be/jf_YOzW7I3s | ||
| + | |||
| + | == Next Steps == | ||
| + | Recently Anchor underwent several large changes. [https://review.openstack.org/#/c/142470/ Firstly] it moved away from using the unmaintained M2Crypto library and [https://review.openstack.org/#/c/142486/ secondly] its project configuration was altered to better match standard boilerplate for OpenStack projects. Because of the size of and disruptive nature of these changes the project has entered a period of feature freeze while we work on creating an extensive test suite. | ||
| + | |||
| + | == Contributing == | ||
| + | We are a friendly bunch and would be more than happy to welcome anyone interested in contributing to Anchor. Since we are in a feature freeze period we would encourage anyone looking to get involved to focus their efforts on helping to enhance and improve our test suite. The Anchor project is discussed during the [https://wiki.openstack.org/wiki/Security_Teams OSSG] weekly meetings in and in the #openstack-security IRC room, feel free to drop in and say hello. | ||
Revision as of 10:45, 9 January 2015
Anchor
What is it
Anchor is an ephemeral PKI system built to enable cryptographic trust in OpenStack services in a way that doesn't rely on broken provisioning and revocation mechanisms that undermine most PKI deployments.
More content to follow, this page is a place holder.
- Stackforge: git clone https://review.openstack.org/stackforge/anchor
- Gerrit: https://review.openstack.org/#/admin/projects/stackforge/anchor
- Launchpad: https://launchpad.net/anchor
While we get around to adding more content, you may find this presentation from the Paris summit on Ephemeral PKI: http://youtu.be/jf_YOzW7I3s
Next Steps
Recently Anchor underwent several large changes. Firstly it moved away from using the unmaintained M2Crypto library and secondly its project configuration was altered to better match standard boilerplate for OpenStack projects. Because of the size of and disruptive nature of these changes the project has entered a period of feature freeze while we work on creating an extensive test suite.
Contributing
We are a friendly bunch and would be more than happy to welcome anyone interested in contributing to Anchor. Since we are in a feature freeze period we would encourage anyone looking to get involved to focus their efforts on helping to enhance and improve our test suite. The Anchor project is discussed during the OSSG weekly meetings in and in the #openstack-security IRC room, feel free to drop in and say hello.
