search

in-toto / specification

Specification and other related documents.
https://in-toto.io
MIT License
38 stars 25 forks source link

Support ecdsa key-type for commands #67

Closed danbev closed 1 year ago

danbev commented 1 year ago

Currently, commands like in-toto-sign, and in-toto-run support a command line option named --key-type:

 -t {rsa,ed25519}, --key-type {rsa,ed25519}

Would it be possible to add support for ECDSA key types?

The reason for asking this that it would be nice to be able to use keys generated by cosign but currently it looks like cosign only generates ECDSA-P256 keys and uses SHA256 hashes.

I'm not sure if this helps or not, but it looks like securesystemslib has support for KEY_TYPE_ECDSA.

danbev commented 1 year ago

Sorry, I opened this against the wrong repo.