Add Key Management Provider for Trusted Signing #1818

yizha1 · 2024-09-19T06:58:17Z

What would you like to be added?

Currently, Ratify supports fetching certificates/keys stored in Azure Key Vault (AKV) for signature verification. Trusted Signing is a fully managed, end-to-end solution. Here are some benefits:

Simplified Signing Process
Zero-Touch Certificate Management
Integration with Developer Tools
Support for Various Trust Scenarios

Trusted Signing offers a streamlined signing and verification experience. Therefore, this enhancement request is to add a new Key Management Provider for Trusted Signing.

Anything else you would like to add?

I will create a proposal to describe the scenarios and proposed user experience.

Are you willing to submit PRs to contribute to this feature?

Yes, I am willing to implement it.

yizha1 · 2024-09-26T01:02:06Z

I recommend considering the enhancement for the upcoming v1.4.0 milestone tentatively, as we first need to prepare the proposal and design document, in addition to planning collaboration with other communities. We can revisit the timeline for this issue in Oct.

yizha1 added enhancement New feature or request triage Needs investigation labels Sep 19, 2024

akashsinghal self-assigned this Nov 4, 2024

binbin-li added this to the v1.5.0 milestone Nov 14, 2024

binbin-li removed the triage Needs investigation label Nov 14, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add Key Management Provider for Trusted Signing #1818

Add Key Management Provider for Trusted Signing #1818

yizha1 commented Sep 19, 2024

yizha1 commented Sep 26, 2024

Add Key Management Provider for Trusted Signing #1818

Add Key Management Provider for Trusted Signing #1818

Comments

yizha1 commented Sep 19, 2024

What would you like to be added?

Anything else you would like to add?

Are you willing to submit PRs to contribute to this feature?

yizha1 commented Sep 26, 2024