differences betwen prod and test

Nitrokey · Oct 14, 2024 · 66dea21 · 66dea21
1 parent 90b517d
commit 66dea21
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 5 deletions.
diff --git a/nethsm/container/production-image.rst b/nethsm/container/production-image.rst
@@ -2,10 +2,9 @@ Production Image
 ----------------
 
 The production image is provided for production environments with high security demands.
+It requires an external etcd key-value store which is connected through an encrypted connection.
+The NetHSM process can be executed with hardware-based separation (KVM) and device-specific encryption.
 The image is distributed as OCI image and can be run locally with a compatible executor such as Docker and Podman.
-It requires an external etcd key-value store and offers to run the NetHSM process with hardware-based separation (KVM).
-The connection between the NetHSM process and the key-value store is encrypted.
-Additionally, the required secrets such as certificates and private keys can be set through the secrets feature of the container executor.
 
 .. include:: container-hardware-restriction.rst.inc
 

diff --git a/nethsm/container/test-image.rst b/nethsm/container/test-image.rst
@@ -2,9 +2,9 @@ Test Image
 ----------
 
 The test image is provided for testing and development purposes.
-The image is distributed as OCI image and can be run locally with a compatible executor such as Docker and Podman.
-It does not offer to run the NetHSM process with hardware-based separation (KVM).
+It does not offer to run the NetHSM process with hardware-based separation (KVM), to encrypt the data store, or to use an external etcd.
 The connection between the NetHSM process and the integrated key-value store is unencrypted.
+The image is distributed as OCI image and can be run locally with a compatible executor such as Docker and Podman.
 
 .. include:: container-hardware-restriction.rst.inc