Skip to content

restrict encoding/decoding credentials with a given key based on the request UID/GID #104

New issue
New issue
Open
Open
restrict encoding/decoding credentials with a given key based on the request UID/GID#104
Labels
featuresecurity
@dun

Description

@dun
dun
opened on May 18, 2021

Add the ability to restrict encoding and decoding of credentials with a given key based on the request UID and/or GID. This would help mitigate the PLATYPUS power side-channel attack by an unprivileged user. It would allow the administrator to reduce the attack surface of a given key to a trusted set of users and/or groups.

This must be specified in the configuration file (#58).

Metadata

Metadata

Assignees

No one assigned

    Labels

    featuresecurity

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions