-
Notifications
You must be signed in to change notification settings - Fork 16
2023 04 10 Meeting Minutes
Tracy Kuhrt edited this page Apr 10, 2023
·
1 revision
- Continue discussion from last week's architecture topics brainstorm
- Review discussion thread on the most important architecture topics
- Discussion about KMS
- Shared link on Key Management Service class diagram
- Would be good to flesh out
- Need to separate out the encrypting and signing into separate interfaces
- Information shared on Hyperledger Aries Framework Go
- Uses Google Tink for the lower layer KMS and built a Remote KMS and Local KMS on top (as a higher layer KMS)
- Example: Key Manager definition: https://github.com/hyperledger/aries-framework-go/blob/main/component/kmscrypto/pkg/kms/api.go
- Discussion on Darrell's comment
- Do OS provider's allow applications to share credentials or talk between themselves?
- Separating the Enclave (key management) from Secure Storage (that uses the Enclave) may help explain the problem better
- Discussion around backup and recovery and the challenges.