Create a hardware root-of-trust attestation capabilities of Keylime as a root-of-trust option for SPIFFE/SPIRE
ZeroTrust – SPIRE+Keylime integration
read more
Trust
Sigstore – RH Secure Sign
As a fully supported distribution of the upstream Sigstore, SecureSign simplifies some supply chain security best practices (ex. key management) and reduces complexity in deployment. Supported environments will be OpenShift (helm charts) RHEL (Ansible)
Keylime operator on OpenShift
Keylime is already a supported project in RHEL, but for OpenShift there are some complications and bootstrapping hurdles that make it difficult for non-experts to setup. This effort will work with the upstream Keylime community to design, execute and test the...
Ansible Automation Hub Sigstore Integration
The Ansible Automation Hub Sigstore Integration project has three main objectives: 1. Implement a new type of managed credentials and verification logic for verifying Sigstore signatures on Ansible projects during project syncs on the automation controller. 2. Sign...