[Opendnssec-develop] hsm-toolkit questions

Rickard Bondesson rickard.bondesson at iis.se
Wed Mar 11 12:41:06 UTC 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> I believe we decided that the LABEL should be used and that 
> the generator of the key assigns the label. IIRC, we said 
> that the KASP enforcer would typically generate the key and 
> then update the label to be the hash (SHA-1) of the public key.

Then we have to define how the public key should be hashed (in what order to hash the key material). Or perhaps there is a procedure defined by the community?

// Rickard
-----BEGIN PGP SIGNATURE-----
Version: 9.8.3 (Build 4028)
Charset: utf-8

wsBVAwUBSbexYuCjgaNTdVjaAQgEaAf/btxV8yZjMmyRN1fAtWiT0NhTgD2D2Xl/
GWMzsfF5vZ0p/FCAAGz9rSoJW/FFcALZr6cASeo+UBztpx3k9HeWlgnWStaw/87M
Om+ESq3ccM5RVh+yACiwqBkyu/nr0ixHwxthlg5cHdhMenjp/QIv6tTSgakuFqzj
QmwUzmV1G90ERZS27Vtz69iA+PQrqXrEzYa798vw6WrhZI/+SA7QwvaKaH+xik05
9r54ZjWpAs935wBYWun5wKjZU18YipQjdm8SXVej9Wh+G8s5cNMC4uNfE8wRAHJr
mcPwKqwKVfBkg/dLgpPLRkNewNMT+h+g4mOEqrKyPOl5efS8qq9F8Q==
=qA/p
-----END PGP SIGNATURE-----



More information about the Opendnssec-develop mailing list