[Opendnssec-develop] proposed libhsm API
John Dickinson
jad at jadickinson.co.uk
Fri Apr 24 12:02:05 UTC 2009
On 24 Apr 2009, at 12:39, Ray.Bellis at nominet.org.uk wrote:
> re:
>
> const hsm_key_t *hsm_generate_rsa_key(unsigned long keysize);
>
> Do we need a parameter to say _which_ HSM the key will be generated
> on.
> For instance, when adding a second HSM to an existing system (so
> that the
> old can be eventually decommissioned) we might need to specify that
> all
> news keys are created on the new HSM and not on the old one.
Yes. and maybe a few other things like exponent size.
---
John Dickinson
http://www.jadickinson.co.uk
I am riding from Lands end to John O'Groats to raise money for
Parkinson's Disease Research. Please sponsor me here http://justgiving.com/pedalforparkinsons2009
More information about the Opendnssec-develop
mailing list