Tomorrow I will be doing a talk at #FrOSCon about a project that I have been working on for a while: #Signstar - a secure signing environment based on @nitrokey's #NetHSM
https://programm.froscon.org/2024/events/3139.html
#FrOSCon2024 #Rust #RustLang #DigitalSigning #ArchLinux #OpenPGP #SecureBoot #Packaging #Automation #HardwareSecurityModule #HSM
I have just released version 0.1.0 of the #nethsm #crate, a library abstracting the use of the @nitrokey #NetHSM:
https://crates.io/crates/nethsm
Please have a look at the #documentation for further information on how to use it:
https://docs.rs/nethsm/0.1.0/nethsm/
The project is a milestone in the creation of a general purpose #SigningEnclave which we hope can be used for artifact signing purposes on #ArchLinux in the future.
#HSM #HardwareSecurityModule #signing #encryption #decryption #RustLang
#Microsoft Signing Key Stolen by #Chinese - #Schneier on #Security
Actually, two things went badly wrong here. The first is that #Azure accepted an expired signing key, implying a #vulnerability in whatever is supposed to check key validity. The second is that this key was supposed to remain in the the system’s #HardwareSecurityModule —and not be in software
#privacy #China #signingkey
https://www.schneier.com/blog/archives/2023/08/microsoft-signing-key-stolen-by-chinese.html
David Runge
PrivacyDigest