[tor-bugs] #11300 [Tor Sysadmin Team]: Find a secure signing machine for TBB signing
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri May 22 09:29:10 UTC 2015
#11300: Find a secure signing machine for TBB signing
-----------------------------------+----------------------
Reporter: mikeperry | Owner:
Type: task | Status: assigned
Priority: normal | Milestone:
Component: Tor Sysadmin Team | Version:
Resolution: | Keywords:
Actual Points: | Parent ID:
Points: |
-----------------------------------+----------------------
Comment (by ln5):
SUNET is happy to either host a signing machine using the DigiCert thingie
for signing or, if possible, put keys into an existing HSM system.
For the first alternative, I need to go buy two RPI:s, pick a distribution
and install it. I've secured physical hosting space in a place that I have
access to and knowledge about who enters.
For the second alternative, someone needs to either make a new request for
a signing key or find out a way of (wrapping and) exporting the key from
the DigiCert token.
Let me know which one is preferred.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/11300#comment:15>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list