stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 3 Releases Wiki Activity
Files
2170a58734104fa86d3aa906cbfaf583d30104c8
git.stella-ops.org/src/Signer/__Libraries/StellaOps.Signer.KeyManagement/ITrustAnchorManager.cs
master 2170a58734
Some checks failed
Docs CI / lint-and-preview (push) Has been cancelled
Details
Export Center CI / export-ci (push) Has been cancelled
Details
Findings Ledger CI / build-test (push) Has been cancelled
Details
Findings Ledger CI / migration-validation (push) Has been cancelled
Details
Findings Ledger CI / generate-manifest (push) Has been cancelled
Details
Manifest Integrity / Validate Schema Integrity (push) Has been cancelled
Details
Lighthouse CI / Lighthouse Audit (push) Has been cancelled
Details
Lighthouse CI / Axe Accessibility Audit (push) Has been cancelled
Details
Manifest Integrity / Validate Contract Documents (push) Has been cancelled
Details
Manifest Integrity / Validate Pack Fixtures (push) Has been cancelled
Details
Manifest Integrity / Audit SHA256SUMS Files (push) Has been cancelled
Details
Manifest Integrity / Verify Merkle Roots (push) Has been cancelled
Details
Policy Lint & Smoke / policy-lint (push) Has been cancelled
Details
Policy Simulation / policy-simulate (push) Has been cancelled
Details
Add comprehensive security tests for OWASP A02, A05, A07, and A08 categories 
- Implemented tests for Cryptographic Failures (A02) to ensure proper handling of sensitive data, secure algorithms, and key management.
- Added tests for Security Misconfiguration (A05) to validate production configurations, security headers, CORS settings, and feature management.
- Developed tests for Authentication Failures (A07) to enforce strong password policies, rate limiting, session management, and MFA support.
- Created tests for Software and Data Integrity Failures (A08) to verify artifact signatures, SBOM integrity, attestation chains, and feed updates.
2025-12-16 16:40:44 +02:00

230 lines
6.6 KiB
C#
Raw Blame History

using System;
using System.Collections.Generic;
using System.Threading;
using System.Threading.Tasks;
namespace StellaOps.Signer.KeyManagement;
/// <summary>
/// Manages trust anchors and their key bindings.
/// Implements advisory §8.3 trust anchor structure.
/// </summary>
public interface ITrustAnchorManager
{
/// <summary>
/// Get a trust anchor by ID.
/// </summary>
/// <param name="anchorId">The anchor ID.</param>
/// <param name="ct">Cancellation token.</param>
/// <returns>The trust anchor or null.</returns>
Task<TrustAnchorInfo?> GetAnchorAsync(
Guid anchorId,
CancellationToken ct = default);
/// <summary>
/// Find a trust anchor matching a PURL.
/// Uses pattern matching (e.g., pkg:npm/* matches pkg:npm/lodash@4.17.21).
/// </summary>
/// <param name="purl">The PURL to match.</param>
/// <param name="ct">Cancellation token.</param>
/// <returns>The matching trust anchor or null.</returns>
Task<TrustAnchorInfo?> FindAnchorForPurlAsync(
string purl,
CancellationToken ct = default);
/// <summary>
/// Create a new trust anchor.
/// </summary>
/// <param name="request">The creation request.</param>
/// <param name="ct">Cancellation token.</param>
/// <returns>The created trust anchor.</returns>
Task<TrustAnchorInfo> CreateAnchorAsync(
CreateTrustAnchorRequest request,
CancellationToken ct = default);
/// <summary>
/// Update a trust anchor.
/// </summary>
/// <param name="anchorId">The anchor ID.</param>
/// <param name="request">The update request.</param>
/// <param name="ct">Cancellation token.</param>
/// <returns>The updated trust anchor.</returns>
Task<TrustAnchorInfo> UpdateAnchorAsync(
Guid anchorId,
UpdateTrustAnchorRequest request,
CancellationToken ct = default);
/// <summary>
/// Deactivate a trust anchor (soft delete).
/// </summary>
/// <param name="anchorId">The anchor ID.</param>
/// <param name="ct">Cancellation token.</param>
Task DeactivateAnchorAsync(
Guid anchorId,
CancellationToken ct = default);
/// <summary>
/// Verify a signature against a trust anchor's allowed keys.
/// Supports temporal verification for historical proofs.
/// </summary>
/// <param name="anchorId">The anchor ID.</param>
/// <param name="keyId">The key ID that signed.</param>
/// <param name="signedAt">When the signature was created.</param>
/// <param name="predicateType">The predicate type (if restricted).</param>
/// <param name="ct">Cancellation token.</param>
/// <returns>The verification result.</returns>
Task<TrustVerificationResult> VerifySignatureAuthorizationAsync(
Guid anchorId,
string keyId,
DateTimeOffset signedAt,
string? predicateType = null,
CancellationToken ct = default);
/// <summary>
/// Get all active trust anchors.
/// </summary>
/// <param name="ct">Cancellation token.</param>
/// <returns>List of active anchors.</returns>
Task<IReadOnlyList<TrustAnchorInfo>> GetActiveAnchorsAsync(
CancellationToken ct = default);
}
/// <summary>
/// Full trust anchor information including key history.
/// </summary>
public sealed record TrustAnchorInfo
{
/// <summary>
/// The anchor ID.
/// </summary>
public required Guid AnchorId { get; init; }
/// <summary>
/// PURL glob pattern.
/// </summary>
public required string PurlPattern { get; init; }
/// <summary>
/// Currently allowed key IDs.
/// </summary>
public required IReadOnlyList<string> AllowedKeyIds { get; init; }
/// <summary>
/// Allowed predicate types (null = all).
/// </summary>
public IReadOnlyList<string>? AllowedPredicateTypes { get; init; }
/// <summary>
/// Policy reference.
/// </summary>
public string? PolicyRef { get; init; }
/// <summary>
/// Policy version.
/// </summary>
public string? PolicyVersion { get; init; }
/// <summary>
/// Revoked key IDs (still valid for historical proofs).
/// </summary>
public required IReadOnlyList<string> RevokedKeyIds { get; init; }
/// <summary>
/// Full key history.
/// </summary>
public required IReadOnlyList<KeyHistoryEntry> KeyHistory { get; init; }
/// <summary>
/// Whether the anchor is active.
/// </summary>
public bool IsActive { get; init; } = true;
/// <summary>
/// When the anchor was created.
/// </summary>
public required DateTimeOffset CreatedAt { get; init; }
/// <summary>
/// When the anchor was last updated.
/// </summary>
public required DateTimeOffset UpdatedAt { get; init; }
}
/// <summary>
/// Request to create a trust anchor.
/// </summary>
public sealed record CreateTrustAnchorRequest
{
/// <summary>
/// PURL glob pattern.
/// </summary>
public required string PurlPattern { get; init; }
/// <summary>
/// Initial allowed key IDs.
/// </summary>
public required IReadOnlyList<string> AllowedKeyIds { get; init; }
/// <summary>
/// Allowed predicate types (null = all).
/// </summary>
public IReadOnlyList<string>? AllowedPredicateTypes { get; init; }
/// <summary>
/// Policy reference.
/// </summary>
public string? PolicyRef { get; init; }
/// <summary>
/// Policy version.
/// </summary>
public string? PolicyVersion { get; init; }
}
/// <summary>
/// Request to update a trust anchor.
/// </summary>
public sealed record UpdateTrustAnchorRequest
{
/// <summary>
/// Updated predicate types.
/// </summary>
public IReadOnlyList<string>? AllowedPredicateTypes { get; init; }
/// <summary>
/// Updated policy reference.
/// </summary>
public string? PolicyRef { get; init; }
/// <summary>
/// Updated policy version.
/// </summary>
public string? PolicyVersion { get; init; }
}
/// <summary>
/// Result of trust verification.
/// </summary>
public sealed record TrustVerificationResult
{
/// <summary>
/// Whether the signature is authorized.
/// </summary>
public required bool IsAuthorized { get; init; }
/// <summary>
/// Reason for authorization failure (if applicable).
/// </summary>
public string? FailureReason { get; init; }
/// <summary>
/// The key status at the time of signing.
/// </summary>
public required KeyStatus KeyStatus { get; init; }
/// <summary>
/// Whether the predicate type was allowed.
/// </summary>
public bool? PredicateTypeAllowed { get; init; }
}
Reference in New Issue View Git Blame Copy Permalink