Key Management Service - Meander Platform | Generated by Eircodex v8.8.6

Infrastructure medium complexity backend

Dependencies

Dependents

Entities

Integrations

Description

Manages lifecycle of cryptographic key pairs for coordinators and peer mentors, including generation, distribution, rotation, and revocation. Provides public-key lookup for the Encryption Service during dispatch.

Feature: Encrypted Assignment Dispatch

key-management-service

Sources & reasoning

Source §3.1 explicitly lists encrypted assignment dispatch with delivery/read receipts and 10-day reminder as a Blindeforbundet must-have. §5 places 'Kryptert oppdragsutsendelse med statussporing' in Fase 2 Kjerneprodukt, which maps to target_release 'Core Product'.

docs/source/likeperson.md · line 55-58

Kryptert oppdragshandtering: Sende sensitive personopplysninger (navn, adresse, epikrise) til likepersoner med leveringsbekreftelse og lesebekreftelse. Statusoversikt over apne oppdrag. Automatisk paminnelse etter 10 dager dersom kontakt ikke er oppr
docs/source/likeperson.md · line 259

Kryptert oppdragsutsendelse med statussporing (Blindeforbundet-kritisk)

Responsibilities

Generate and store per-user key pairs in secure enclave or HSM
Distribute public keys to authorized senders on request
Rotate keys on schedule or upon revocation events
Revoke compromised keys and notify dependent services
Audit key access and usage for compliance

Interfaces

generateKeyPair(userId): KeyPair

getPublicKey(userId): PublicKey

rotateKey(userId): KeyPair

revokeKey(userId, reason): void

Related Data Entities (1)

Data entities managed by this component

Encrypted Assignments 25 fields core