sharkey icon indicating copy to clipboard operation
sharkey copied to clipboard

Published 20 hours ago verified publisher icon square

Add HSM Support for the CA keys

Open mcpherrinm opened this issue 8 years ago • 1 comments

It seems like it should be fairly straightforward to use a PKCS11 HSM to hold the CA.

We can use https://github.com/letsencrypt/pkcs11key to get a crypto.Signer and then x/crypto/ssh's NewSignerFromSigner

mcpherrinm avatar Jul 15 '16 06:07 mcpherrinm

@mcpherrinm , @mbyczkowski , Since this is a common use case, I figured I'd make the contribution - https://github.com/square/sharkey/pull/157 Would appreciate your feedback

yan4321 avatar Sep 13 '22 07:09 yan4321