-
Notifications
You must be signed in to change notification settings - Fork 22
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Consider deriving more signature keys and local storage key #10
Comments
This will also require description of expected key storage... |
Just to add a note: the KEY_ENCRYPTED_STORAGE cannot of course be stored on the PowerAuth client. It must be used for initial encryption only, later purged and then retrieved from PowerAuth server upon successful authentication. For retrieving the key from the server, a unique transport key should be used, for example derived from CRT and KEY_TRANSPORT. |
Implementation fixed in 4b8610f. Needed improvements:
|
Fixed in ea19194 |
Currently, master secret KEY_MASTER_SECRET is used to derive one signing key KEY_SIGNATURE and one transport key KEY_TRANSPORT. It would be nice to have:
The text was updated successfully, but these errors were encountered: