Skip to content

Commit

Permalink
docs: update README and add arch docs.
Browse files Browse the repository at this point in the history
  • Loading branch information
colek42 committed Feb 4, 2022
1 parent 48c2dcd commit af249e3
Show file tree
Hide file tree
Showing 4 changed files with 2 additions and 9 deletions.
11 changes: 2 additions & 9 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -61,8 +61,6 @@ tar -xzf witness_${VERSION}_${ARCH}.tar.gz

> Witness supports keyless signing!
- Link: Using SPIRE with witness for keyless signing.

```
openssl genpkey -algorithm ed25519 -outform PEM -out testkey.pem
openssl pkey -in testkey.pem -pubout > testpub.pem
Expand Down Expand Up @@ -103,7 +101,6 @@ witness run --step build -o test-att.json -- go build -o=testapp .

> - This data can be stored and retrieved from rekor!
> - This is the data that is evaluated against the Rego policy
> - Link example attestation data
```
cat test-att.json | jq -r .payload | base64 -d | jq
Expand All @@ -117,10 +114,6 @@ cat test-att.json | jq -r .payload | base64 -d | jq
> - Witness will require all attestations to succeed
> - Witness will evaluate the rego policy against the JSON object in the corresponding attestor
- Link: Witness Policy
- Link: Embedding Rego in Witness Policies
- Link: Witness Functionaries

```
## policy.json
Expand Down Expand Up @@ -216,7 +209,7 @@ Examples of cryptographic validation is found in the GCP, AWS, and GitLab attest

### Attestation Lifecycle

![](arch.drawio.png?page=1)
![](docs/assets/attestation.png)

## Attestor Types

Expand Down Expand Up @@ -264,7 +257,7 @@ I witness policy allowers administrators trace the compliance status of an artif

### Verification Lifecycle

![](arch.drawio.png?page=2)
![](docs/assets/verification.png)

## Using SPIRE for Keyless Signing

Expand Down
Binary file added docs/assets/arch.drawio.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docs/assets/attestation.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Binary file added docs/assets/verification.png
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.

0 comments on commit af249e3

Please sign in to comment.