vault
vault copied to clipboard
hashicorp
TPM/TXT auto-unseal
Is your feature request related to a problem? Please describe. HSMs are expensive and require Vault Enterprise. KMS solutions only work in the cloud. TPM-based auto-unseal would allow for auto-unseal based on measured boot.
Describe the solution you'd like Vault should support unsealing via a TPM.
Describe alternatives you've considered None
Explain any additional use-cases This would be useful for those who want to run Vault on a bare-metal server, especially individuals for whom the cost of an HSM and/or Vault Enterprise would be difficult to justify. In home lab situations, automatic unseal after power outages is important.
Additional context It would also be nice if the TPM could be used for the server certificate or (more likely) for decrypting its secret key.
Auto-unseal can be done on a bare-metal server using cloud encryption services such as AWS KMS - the server itself does not need to be hosted in the cloud. All it needs is outbound Internet access, credentials to authenticate to the cloud and permissions to use a key. KMS pricing is $1 per month so inexpensive too.
TPM would be nice, but at least there is an easy and cheap alternative in the meantime.
Auto-unseal can be done on a bare-metal server using cloud encryption services such as AWS KMS - the server itself does not need to be hosted in the cloud. All it needs is outbound Internet access, credentials to authenticate to the cloud and permissions to use a key. KMS pricing is $1 per month so inexpensive too.
TPM would be nice, but at least there is an easy and cheap alternative in the meantime.
The purpose of the TPM is measured boot: if the system is tampered with, it will not be able to unlock its keys. Nevertheless, there is likely a better solution: store the unseal key in an ordinary file, but use full disk encryption with TPM-sealed keys. That covers all of the use-cases I mentioned above, and more.
On further thought, this is not actually true, especially if Linux’s Integrity Measurement Architecture (or similar) is employed or if the root filesystem is on a read-only dm-verity volume. Also, TPM auto-unseal could be much easier to setup than TPM-based encryption, especially on older distributions.
Interested in this as well but afaict there's a lot of work here and I'd be surprised if this made it into any OSS offering.
Interested in this as well but afaict there's a lot of work here and I'd be surprised if this made it into any OSS offering.
I hope it does. HSM-based auto-unseal only makes sense for enterprises, but auto-unseal based on Dynamic Root of Trust for Measurement (DRTM) makes a lot of sense for individuals.