Open andrewwhitehead opened 1 year ago
The problem with HSMs is you can only multiply a point by the secret value and they only return the X coordinate which means you have to figure out which Y coordinate to use otherwise it breaks. Until they support returning the full point I’m not sure how the HSM can help. Software enclaves can do much better so perhaps that should be the focus first
I'm just opening this issue for discussion of whether the current algorithms preclude support for signing by an HSM (hardware security module) or other types of key vaults.
Some questions that come to mind:
And in general, are there examples of multi-message signing APIs for comparison?