RFC: Fedora signing server design
- First Post
- Replies
- Stats
-
Go to
- ----- 2024 -----
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
Hello,
I'm working on a signing server for Fedora that stores keys and
passphrases without making them directly accessible to everybody who
should be able to sign data with Fedora keys, and I'd appreciate a
review of the design.
The current design is at https://fedoraproject.org/wiki/User:Mitr , with
detailed protocol specifications linked at the end of the page.
Thanks,
Mirek
On Mon, Oct 27, 2008 at 04:25:58PM +0000, Miloslav Trmač wrote:
I'm working on a signing server for Fedora that stores keys and
passphrases without making them directly accessible to everybody who
should be able to sign data with Fedora keys, and I'd appreciate a
review of the design.
Did you read this about how CAcert designed their secure signing
system?
http://www.cacert.org/help.php?id=7
Quite interesting and relevant I think.
Rich.
--
Richard Jones, Emerging Technologies, Red Hat http://et.redhat.com/~rjones
Read my OCaml programming blog: http://camltastic.blogspot.com/
Fedora now supports 68 OCaml packages (the OPEN alternative to F#)
http://cocan.org/getting_started_with_ocaml_on_red_hat_and_fedora
Richard W.M. Jones píše v Po 27. 10. 2008 v 19:39 +0000:
Did you read this about how CAcert designed their secure signing
system?
http://www.cacert.org/help.php?id=7
Quite interesting and relevant I think.
Indeed, thanks for the link.
Mirek
On Mon October 27 2008, Miloslav Trmač wrote:
I'm working on a signing server for Fedora that stores keys and
passphrases without making them directly accessible to everybody who
should be able to sign data with Fedora keys, and I'd appreciate a
review of the design.
Are you cooperation with Jesse Keating? Afaik he works on this, too.
The current design is at https://fedoraproject.org/wiki/User:Mitr ,
with
detailed protocol specifications linked at the end of the page.
This would better fit on:
https://fedorahosted.org/sigul
This is the project page for the key signing server that is planned to be
implemented for Fedora.
Regards,
Till
Till Maas píše v Po 27. 10. 2008 v 23:11 +0100:
On Mon October 27 2008, Miloslav Trmač wrote:
> I'm working on a signing server for Fedora that stores keys and
> passphrases without making them directly accessible to everybody who
> should be able to sign data with Fedora keys, and I'd appreciate a
> review of the design.
Are you cooperation with Jesse Keating? Afaik he works on this, too.
Yes.
Mirek
5675
days inactive
5675
days old
4 comments
3 participants
tags (0)
participants (3)
-
Miloslav Trmač -
Richard W.M. Jones -
Till Maas