[Cryptech Tech] Question regarding Trusted Path Authentication

Basil Dolmatov dol at reedcat.net
Fri Dec 19 15:49:29 UTC 2014



dol@ с iPad

19 дек. 2014 г., в 13:08, Randy Bush <randy at psg.com> написал(а):

>> One example of what's in store for someone wanting to use a threshold
>> scheme with an HSM presented itself during the key ceremony used to
>> initialise the DNSSEC root key for a country.  After several full-day
>> dress rehearals of setting up the key, the organisers had condensed
>> things down to a 500-step checklist (that's not a misprint).  Even
>> after all of the dress rehearsals, it still took a full day to run
>> through, with the four-hour process of setting up the HSM being the
>> single longest step.  Since no-one could enter or leave the secure
>> area while they were waiting for the process to complete, the most
>> important take-away from for next time was "bring boardgames".
> 
> not include food and toilet within the secure perimeter?  :)
Yep. It was the problem during first key procedures for root zone ;) 
> 
> randy
> _______________________________________________
> Tech mailing list
> Tech at cryptech.is
> https://lists.cryptech.is/listinfo/tech


More information about the Tech mailing list