[Opendnssec-develop] Adding ECC to ods-signer
Yuri Schaeffer
yuri at nlnetlabs.nl
Tue Sep 27 07:52:21 UTC 2016
On 26-09-16 14:57, Rickard Bellgrim wrote:
> I did some work on this a few years ago. Libhsm should be ready for use
> by the signer and enforcer. But I do not remember what needs to be done
> in order for them to use the correct algoritms.
We have this open issue in our tracker:
https://issues.opendnssec.org/browse/OPENDNSSEC-450
Where you, Rickard, seem to suggest the enforcer needs work. I haven't
checked what needs to be done but I expect it to be something like:
"Allow the value in the KASP".Of course there is always more work to do
than you think, but it is unlikely that it requires any huge
architectural overhaul. So I'd say go for it!
//Yuri
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: OpenPGP digital signature
URL: <http://lists.opendnssec.org/pipermail/opendnssec-develop/attachments/20160927/34258272/attachment.bin>
More information about the Opendnssec-develop
mailing list