| sidebar | permalink | keywords | summary |
|---|---|---|---|
sidebar |
concept-gcp-verify-signed-image.html |
Google Cloud, image, disk.raw, file signature verification, encryption,ONTAP, Cloud Volumes, OpenSSL, sha256, |
Verify an exported Google Cloud image file signature through the Cloud Volumes ONTAP Image Digest File tool. |
To verify the exported Google Cloud signed image, you must download the image digest file from the NSS to validate the disk.raw file and digest file contents.
The following is an overview of the Google Cloud signed image verification workflow process.
-
From the NSS, download the Google Cloud archive containing the following files:
-
Signed digest (.sig)
-
Certificate containing the public key (.pem)
-
Certificate chain (.pem)
-
-
Download the converted disk.raw file
-
Validate the certificate using the certificate chain
-
Validate the signed digest using the certificate contain the public key
-
Decrypt the signed digest using the public key to extract the digest of the image file
-
Create a digest of the downloaded disk.raw file
-
Compare the two digest file for validation
-
