Fill out feature sections #52
Comments
|
✋ I'll take a look at signed images |
|
I can take ... hmm... let's see... authenticated registries. If anyone feels more comfortable switching topics, let me know because I think I know a little bit of each topic so we can swap. |
|
I suggest the following addition to the list of features (feel free to reword them):
|
|
We now have a sealed secrets page that is probably about 70 percent. We can improve on that in future iterations. |
|
Hi @fitzthum @Xynnn007 ! While working on authenticated registry documentation I remembered of a discussion I had with @stevenhorsman when we were adding the tests for that feature. So I'd like to double-check with you that registry authentication is not currently confidential. The fact that users need to create the docker-registry secret for nydus-snapshotter to pull metadata, makes it susceptible for a malicious host to read the authentication credentials, hence breaking confidentiality. Then:
|
That is still the case and we should make sure people understand that. |
ok, so I will do my best to explain that situation. |
Explain how to configure for using authenticated registries. Related-to: confidential-containers#52 Signed-off-by: Wainer dos Santos Moschetta <[email protected]>
Explain how to configure for using authenticated registries. Related-to: confidential-containers#52 Signed-off-by: Wainer dos Santos Moschetta <[email protected]>
Explain how to configure for using authenticated registries. Related-to: confidential-containers#52 Signed-off-by: Wainer dos Santos Moschetta <[email protected]>
Explain how to configure for using authenticated registries. Related-to: #52 Signed-off-by: Wainer dos Santos Moschetta <[email protected]>
The docs now have a section for all the features that CoCo provides. Features refers to primitives like sealed-secrets, encrypted images, protected storage, etc that people can use to put together a confidential workload.
Most of the feature pages are empty at the moment. I need some help to fill them out. We don't need anything too fancy at first, but let's try to give users a foolproof guide to the various pieces. We already have some documentation about features scattered between different repos. You can also take a look at the tests if you forget how exactly something works.
Here are the features we have so far:
also, if I forgot a feature lmk or add it.
Does anyone want to adopt one of these pages for a little while? I'll tag some random people who worked on some of these features. @stevenhorsman @ChengyuZhu6 @wainersm @portersrc @fitzthum @mkulke
The text was updated successfully, but these errors were encountered: