Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Platform] Check if configmaps are encrypted #1994

Open
24 tasks
haskojur opened this issue Apr 19, 2024 · 0 comments
Open
24 tasks

[Platform] Check if configmaps are encrypted #1994

haskojur opened this issue Apr 19, 2024 · 0 comments
Assignees
Labels
platform platform conformance test

Comments

@haskojur
Copy link
Contributor

Title: [Platform] SECURITY test: ensure_cm_encrypted

Is your workload test idea related to a problem? Please describe.

  • In Kubernetes systems, there's a risk that data stored in configmaps in etcd may not be adequately encrypted, potentially being only encoded. If data are merely encoded, they can be easily decoded by unauthorized individuals, compromising sensitive information.

Describe the solution you'd like

  • This new test case aims to verify whether data stored in secrets are properly encrypted in etcd key-value store, thereby ensuring enhanced security of the Kubernetes environment. This will also follow best practices for Kubernetes configmaps.

Test Category Name

  • PLATFORM

Type of test (static or runtime)

  • static

Documentation tasks:

QA tasks

Dev Review:

  • walk through A/C
  • do you get the expected result?
  • if yes,
    • move to Needs Peer Review column
    • create Pull Request and follow check list
    • Assign 1 or more people for peer review
  • if no, document what additional tasks will be needed

Peer review:

  • walk through A/C
  • do you get the expected result?
  • if yes,
    • move to Reviewer Approved column
    • Approve pull request
  • if no,
    • document what did not go as expected, including error messages and screenshots (if possible)
    • Add comment to pull request
    • request changes to pull request
@haskojur haskojur added the platform platform conformance test label Apr 19, 2024
@lixuna lixuna moved this to Peer Review in CNTI Test Catalog May 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
platform platform conformance test
Projects
Status: Peer Review
Development

No branches or pull requests

2 participants