search

in-toto / specification

Specification and other related documents.
https://in-toto.io
MIT License
40 stars 26 forks source link

Support ecdsa key-type for commands #67

Closed danbev closed 2 years ago

danbev commented 2 years ago

Currently, commands like in-toto-sign, and in-toto-run support a command line option named --key-type:

 -t {rsa,ed25519}, --key-type {rsa,ed25519}

Would it be possible to add support for ECDSA key types?

The reason for asking this that it would be nice to be able to use keys generated by cosign but currently it looks like cosign only generates ECDSA-P256 keys and uses SHA256 hashes.

I'm not sure if this helps or not, but it looks like securesystemslib has support for KEY_TYPE_ECDSA.

danbev commented 2 years ago

Sorry, I opened this against the wrong repo.