Hacker News new | past | comments | ask | show | jobs | submit login

> obscurity mechanism

I am wondering: could you store the signing keys on a Fido2 device? Or in a crypted file?

I would think this would not be mere obscurity, as this makes sure that just being root does not give you access to the signing keys.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: