Closed sckulkarni246 closed 2 years ago
There is work in progress to support EC keys: https://github.com/awslabs/aws-c-io/pull/479
Thank you for this update @graebm - I will track the progress there. Looks like the support will be available soon.
Regards, Shashank
Hi @graebm - will this feature be available in the SDK any time soon?
Regards, Shashank
Released in version 1.11.0!
Comments on closed issues are hard for our team to see. If you need more assistance, please either tag a team member or open a new issue that references this one. If you wish to keep having a conversation with other community members under this issue feel free to do so.
Is your feature request related to a problem? Please describe. I am trying to use the pkcs11_pubsub.py on a Raspberry Pi connected to a Microchip ATECC608. Microchip's cryptoauthlib is configured as a PKCS11 provider - the same is correctly working with p11tool, able to generate CSRs, etc. However, I am not able to use it with the pkcs11_pubsub.py as the SDK seems to support only RSA keys as of today.
Describe the solution you'd like It would be a fantastic to have support for EC keys as well so that secure elements like ATECC608 can be used to build more secure end nodes. Seems this support is already there on microcontroller SDK.
Describe alternatives you've considered No alternatives possible as the support does not exist.
Additional context Below is my output with the p11tool - clearly showing a private key that should be usable by anything that supports PKCS11. Eg: openssl.
Below is my output that tells me that EC keys are unsupported in AWS IoT SDK (Python). Note the run time error at the end.
Look forward to hearing from the dev team on ways to go about this!
Regards, Shashank