Closed kwatsen closed 5 years ago
Juergen writes later:
The question is whether there is value to centralize beyond the differnet key systems. Is there really added value to try to treat SSH keys and X.509 in the same list infrastructure or are they at the end just different things? What about other keys, i.e., for signing DNS zones or RPKI keys? Is it useful to try to put all of these keys that serve different purposes into a common structure? The open source people maintaining software packages seem to keep things separate. Is Junos having such a centralized asymmetric keystore? How about IOS XR? Others? If not, why would a standard do this?
Juergen writes: