[openstack-dev] [barbican] Tech approach blueprint updated
Nate Reller
rellerreller at yahoo.com
Tue May 7 15:10:02 UTC 2013
> My thought here is that the expiration date is a hard datetime. It is not
> required to be set, but if it is, they key should essentially
> self-destruct once the time has passed. I think it should be up to the
> provider what 'self-destructed' means. It could be totally deleted and
> unrecoverable, marked as deleted and recoverable via an alternate process
> or only existing on backups and recoverable via a manual process.
> Something like that.
+1
I think when the key expires that it should no longer be available.
-Nate
More information about the OpenStack-dev
mailing list