Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Flexible key manager policy signers #2444

Closed
kostko opened this issue Dec 3, 2019 · 0 comments · Fixed by #2623
Closed

Flexible key manager policy signers #2444

kostko opened this issue Dec 3, 2019 · 0 comments · Fixed by #2623
Assignees
@abukosek
Labels
c:key management Category: key management

Comments

@kostko
Copy link
Member

kostko commented Dec 3, 2019

Currently the set of key manager policy signers is hard-coded. While the set must be compiled into the key manager and key manager client binaries for security reasons, we should make it so that people can easily build key managers with a different set. This is required so that people can develop their own runtimes which use their own key managers.

One way to do it is to have all key manager functionality exposed as a library crate and then the actual key manager implementation only needs to provide the set of key manager policy signers.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@abukosek abukosek

Labels
c:key management Category: key management
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Flexible key manager policy signers oasisprotocol/oasis-core
2 participants
@kostko @abukosek