Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/richard-sebos/zerotrust-blockchain-access

A blockchain-based Zero Trust Architecture (ZTA) for secure NAS access, utilizing Terraform, Ansible, and OPNSense for network and access control infrastructure.
https://github.com/richard-sebos/zerotrust-blockchain-access

access-control ansible blockchain cybersecurity infrastructure-as-code nas opnsense proxmox terraform zerotrust

Last synced: 18 days ago
JSON representation

A blockchain-based Zero Trust Architecture (ZTA) for secure NAS access, utilizing Terraform, Ansible, and OPNSense for network and access control infrastructure.

Host: GitHub
URL: https://github.com/richard-sebos/zerotrust-blockchain-access
Owner: richard-sebos
Created: 2024-11-11T21:22:57.000Z (3 months ago)
Default Branch: main
Last Pushed: 2025-01-22T08:11:47.000Z (20 days ago)
Last Synced: 2025-01-22T09:23:05.822Z (19 days ago)
Topics: access-control, ansible, blockchain, cybersecurity, infrastructure-as-code, nas, opnsense, proxmox, terraform, zerotrust
Language: HCL
Homepage:
Size: 46.9 KB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

# **Blockchain Zero Trust Access (ZTA) Project**

## Overview

The **Blockchain Zero Trust Access (ZTA)** project implements a cutting-edge security solution that leverages blockchain technology within a Zero Trust Architecture (ZTA) framework to manage secure file access on a NAS (Network-Attached Storage) system. By utilizing a permissioned blockchain network, this project verifies user identity and permissions in a decentralized and tamper-resistant way, enhancing both security and transparency. It includes automated provisioning, configuration, and access management using Terraform and Ansible, making the setup and maintenance efficient.

---

## Features

- **Blockchain-Based Access Control**: Permissioned blockchain network (e.g., Hyperledger Fabric or Ethereum) ensures decentralized and tamper-proof access verification.
- **Zero Trust Microservices**: A dedicated API verifies user requests against the blockchain for secure access to NAS files.
- **Terraform Provisioning**: Automated VM and container creation within a Proxmox Virtual Environment.
- **Ansible Configuration Management**: Centralized configuration management to apply consistent policies across all project nodes.
- **Firewall and Network Segmentation**: OPNSense firewall enforces strict network segmentation based on Zero Trust principles.
- **Secure NAS Access**: Managed access to NAS files through a proxy server that forwards only authenticated and authorized requests.