Confirmed users
65
edits
TrunionOverhaul: Difference between revisions
SoftHSM, not OpenHSM
(→Additional work: fixing the receipt tilde) |
RyanTilder (talk | contribs) (SoftHSM, not OpenHSM) |
||
| Line 54: | Line 54: | ||
* signing-clients needs to be brought up to date in a big way | * signing-clients needs to be brought up to date in a big way | ||
* a class hierarchy that manages accessing different types of HSMs may be necessary. i.e. none(for testing), chil(for stage/prod), and maybe | * a class hierarchy that manages accessing different types of HSMs may be necessary. i.e. none(for testing), chil(for stage/prod), and maybe [https://www.opendnssec.org/softhsm/ SoftHSM](for dev). | ||
* a revisit of receipt signing in general | * a revisit of receipt signing in general | ||
* possibly replacing our tilde separated receipt format (for key separation) with a more standard way of attaching a key to a JSON Web Token. The Persona/FxA work may have some leads on how to do this. | * possibly replacing our tilde separated receipt format (for key separation) with a more standard way of attaching a key to a JSON Web Token. The Persona/FxA work may have some leads on how to do this. | ||