Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[spmutil] enable provisioning RMA wrapping key (RSA3k) #43

Open
3 tasks
timothytrippel opened this issue Jan 18, 2025 · 0 comments
Open
3 tasks

[spmutil] enable provisioning RMA wrapping key (RSA3k) #43

timothytrippel opened this issue Jan 18, 2025 · 0 comments
Assignees
@moidx
Labels
enhancement New feature or request

Comments

@timothytrippel
Copy link
Collaborator

RMA tokens will generated by the HSM (SPM), hashed and then sent to the DUT to be written to OTP. Additionally, they will also be encrypted with an RSA public key written to the registry. The matching private key should be provisioned within the SPM's HSM. Thus, the spmutil too must be updated to:

  • spmutil should be updated to generate RSA 3K keys (marked as exportable so they can be transferred between HSMs)
  • the deployment script should updated to provision softhsm2 with such keys
  • update the SPM docs to include instructions for use
@timothytrippel timothytrippel added the enhancement New feature or request label Jan 18, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@moidx moidx

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@moidx @timothytrippel