stella-ops.org/git.stella-ops.org
1
0
Fork 0
Code Issues Pull Requests Actions 16 Releases Wiki Activity
Files
cef4cb2c5a2d29b5b40a4a25cd7f8426c8c5dd4f
git.stella-ops.org/docs/implplan/SPRINT_162_exportcenter_i.md
master cef4cb2c5a Add support for ГОСТ Р 34.10 digital signatures 
- Implemented the GostKeyValue class for handling public key parameters in ГОСТ Р 34.10 digital signatures.
- Created the GostSignedXml class to manage XML signatures using ГОСТ 34.10, including methods for computing and checking signatures.
- Developed the GostSignedXmlImpl class to encapsulate the signature computation logic and public key retrieval.
- Added specific key value classes for ГОСТ Р 34.10-2001, ГОСТ Р 34.10-2012/256, and ГОСТ Р 34.10-2012/512 to support different signature algorithms.
- Ensured compatibility with existing XML signature standards while integrating ГОСТ cryptography.
2025-11-09 21:59:57 +02:00

3.8 KiB
Raw Blame History

Sprint 162 - Export & Evidence · 160.B) ExportCenter.I

Active items only. Completed/historic work now resides in docs/implplan/archived/tasks.md (updated 2025-11-08).

[Export & Evidence] 160.B) ExportCenter.I Depends on: Sprint 110.A - AdvisoryAI, Sprint 120.A - AirGap, Sprint 130.A - Scanner, Sprint 150.A - Orchestrator Summary: Export & Evidence focus on ExportCenter (phase I).

Task ID State Task description Owners (Source)
DVOFF-64-002 TODO Provide verification CLI (stella devportal verify bundle.tgz) ensuring integrity before import. Dependencies: DVOFF-64-001. DevPortal Offline Guild, AirGap Controller Guild (src/ExportCenter/StellaOps.ExportCenter.DevPortalOffline)
EXPORT-AIRGAP-56-001 TODO Extend Export Center to build Mirror Bundles as export profiles, including advisories/VEX/policy packs manifesting DSSE/TUF metadata. Exporter Service Guild, Mirror Creator Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-AIRGAP-56-002 TODO Package Bootstrap Pack (images + charts) into OCI archives with signed manifests for air-gapped deployment. Dependencies: EXPORT-AIRGAP-56-001. Exporter Service Guild, DevOps Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-AIRGAP-57-001 TODO Integrate portable evidence export mode producing sealed evidence bundles with DSSE signatures and chain-of-custody metadata. Dependencies: EXPORT-AIRGAP-56-002. Exporter Service Guild, Evidence Locker Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-AIRGAP-58-001 TODO Emit notifications and timeline events when Mirror Bundles or Bootstrap packs are ready for transfer. Dependencies: EXPORT-AIRGAP-57-001. Exporter Service Guild, Notifications Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-ATTEST-74-001 TODO Implement export job producing attestation bundles with manifest, checksums, DSSE signature, and optional transparency log segments. Attestation Bundle Guild, Attestor Service Guild (src/ExportCenter/StellaOps.ExportCenter.AttestationBundles)
EXPORT-ATTEST-74-001 TODO Implement attestation bundle export job via Export Center. Dependencies: EXPORT-ATTEST-74-001. Exporter Service Guild, Attestation Bundle Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-ATTEST-74-002 TODO Integrate bundle job into CI/offline kit packaging with checksum publication. Dependencies: EXPORT-ATTEST-74-001. Attestation Bundle Guild, DevOps Guild (src/ExportCenter/StellaOps.ExportCenter.AttestationBundles)
EXPORT-ATTEST-75-001 TODO Provide CLI command stella attest bundle verify/import for air-gap usage. Dependencies: EXPORT-ATTEST-74-002. Attestation Bundle Guild, CLI Attestor Guild (src/ExportCenter/StellaOps.ExportCenter.AttestationBundles)
EXPORT-ATTEST-75-001 TODO Integrate attestation bundles into offline kit flows and CLI commands. Dependencies: EXPORT-ATTEST-75-001. Exporter Service Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-ATTEST-75-002 TODO Document /docs/modules/attestor/airgap.md with bundle workflows and verification steps. Dependencies: EXPORT-ATTEST-75-001. Attestation Bundle Guild, Docs Guild (src/ExportCenter/StellaOps.ExportCenter.AttestationBundles)
EXPORT-OAS-61-001 TODO Update Exporter OAS covering profiles, runs, downloads, devportal exports with standard error envelope and examples. Exporter Service Guild, API Contracts Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-OAS-61-002 TODO Provide /.well-known/openapi discovery endpoint with version metadata and ETag. Dependencies: EXPORT-OAS-61-001. Exporter Service Guild (src/ExportCenter/StellaOps.ExportCenter)
EXPORT-OAS-62-001 TODO Ensure SDKs include export profile/run clients with streaming download helpers; add smoke tests. Dependencies: EXPORT-OAS-61-002. Exporter Service Guild, SDK Generator Guild (src/ExportCenter/StellaOps.ExportCenter)