mirror of
https://github.com/lingble/talos.git
synced 2025-12-24 16:37:08 +00:00
655aaa3149
This will allow us to iterate faster on documentation for multiple versions of Talos. Signed-off-by: Andrew Rynhard <andrew@andrewrynhard.com>
15 lines
760 B
Markdown
15 lines
760 B
Markdown
---
|
|
title: 'trustd'
|
|
---
|
|
|
|
Security is one of the highest priorities within Talos.
|
|
To run a Kubernetes cluster a certain level of trust is required to operate a cluster.
|
|
For example, orchestrating the bootstrap of a highly available control plane requires the distribution of sensitive PKI data.
|
|
|
|
To that end, we created `trustd`.
|
|
Based on the concept of a Root of Trust, `trustd` is a simple daemon responsible for establishing trust within the system.
|
|
Once trust is established, various methods become available to the trustee.
|
|
It can, for example, accept a write request from another node to place a file on disk.
|
|
|
|
Additional methods and capability will be added to the `trustd` component in support of new functionality in the rest of the Talos environment.
|