[Opendnssec-develop] interaction between the Signer and KASP
Roland van Rijswijk
roland.vanrijswijk at surfnet.nl
Thu Jan 8 08:27:46 UTC 2009
Hi guys,
As promised to Roy last year, I've set up a skeleton for a test
framework to test if a PKCS #11 module has all the capabilities required
to work with OpenDNSSEC.
I have two questions for you:
- Can you try to think of the functionality a PKCS #11 would need to
have to interoperate with OpenDNSSEC (think of: which attributes should
be supported, which mechanisms, which functions, which minimum key
sizes, etc.)
- Is there a shared source control repository (like subversion) where I
can manage the code (I'm managing it in my own svn repository at the
moment).
Cheers,
Roland.
Rickard Bondesson wrote:
>> As promised here are my thoughts. This document is by no
>> means complete and is only intended to reflect my
>> understanding of what we are doing. Therefore, it will need
>> some discussion :)
>
> Great!
>
> As for the security module location, variable in the database, I assume it also contains the slotID and some kind of object identifier (like the CKA_ID or CKA_LABEL).
>
> We should also discuss our commitment and how much time we can spend on this project. This would make it easier to make a more detailed time schedule and resource planning.
>
> As for me, I am working 100 % with this project (SoftHSM). I can also contribute with project administration, like a more detailed project plan, time plan, and calling for meetings (if this is OK by Roy (knows that he has a lot to do in other projects)).
>
>> As for a meeting, I am skiing 17th - 25th but available all
>> the rest of the month.
>
> Perhaps we could have one in next week (not Monday, I have a full day meeting) on Jabber?
>
> // Rickard
------------------------------------------------------------------------
_______________________________________________
Opendnssec-develop mailing list
Opendnssec-develop at lists.opendnssec.org
https://lists.opendnssec.org/mailman/listinfo/opendnssec-develop
--
-- Roland M. van Rijswijk
-- SURFnet Middleware Services
-- t: +31-30-2305388
-- e: roland.vanrijswijk at surfnet.nl
More information about the Opendnssec-develop
mailing list