RFC: Fedora signing server design
Richard W.M. Jones
rjones at redhat.com
Mon Oct 27 19:39:20 UTC 2008
On Mon, Oct 27, 2008 at 04:25:58PM +0000, Miloslav Trmač wrote:
> I'm working on a signing server for Fedora that stores keys and
> passphrases without making them directly accessible to everybody who
> should be able to sign data with Fedora keys, and I'd appreciate a
> review of the design.
Did you read this about how CAcert designed their secure signing
system?
http://www.cacert.org/help.php?id=7
Quite interesting and relevant I think.
Rich.
--
Richard Jones, Emerging Technologies, Red Hat http://et.redhat.com/~rjones
Read my OCaml programming blog: http://camltastic.blogspot.com/
Fedora now supports 68 OCaml packages (the OPEN alternative to F#)
http://cocan.org/getting_started_with_ocaml_on_red_hat_and_fedora
More information about the fedora-devel-list
mailing list