mirror of
https://github.com/optim-enterprises-bv/vault.git
synced 2025-10-29 09:42:25 +00:00
backport of commit 307d27ef77 (#23865)
Co-authored-by: Scott Miller <smiller@hashicorp.com>
This commit is contained in:
hc-github-team-secure-vault-core
committed by
GitHub
GitHub
parent
b529a6de29
commit
b52d47eb8e
@@ -36,7 +36,7 @@ number operations on critical security parameters (CSPs).
|
||||
|
||||
These CSPs have been selected from our previous work in [evaluating Vault for conformance with
|
||||
FIPS 140-2 guidelines for key storage and key transport](https://www.datocms-assets.com/2885/1510600487-vault_compliance_letter_fips_140-2.pdf)
|
||||
and include the following:
|
||||
and include (but not limited to) the following:
|
||||
|
||||
- Vault’s root key
|
||||
- Keyring encryption keys
|
||||
@@ -52,6 +52,9 @@ and include the following:
|
||||
- [SSH](/vault/docs/secrets/ssh) CA key generation, but not for key pair generation
|
||||
- [KMIP](/vault/docs/secrets/kmip) uses EA for its TLS CA, server, and client
|
||||
certificates.
|
||||
- Passwords generated where password policies are supported.
|
||||
- TOTP two factor keys.
|
||||
|
||||
|
||||
## Enabling/Disabling
|
||||
|
||||
|
||||
Reference in New Issue
Block a user