notaryproject / notary

Notary is a project that allows anyone to have trust over arbitrary collections of data
Apache License 2.0
3.23k stars 510 forks source link

What asymmetric algorithm is used to generate keys ? #1549

Open SpitNight opened 4 years ago

SpitNight commented 4 years ago

Hello,

I'm new to TUF, Notary and DCT and I haven't been able to find much information about the crypto algorithm used to generate the keys. I read all keys use asymmetric algorithms but which algorithm ? I understand that all keys (root, delegation, snapshot, timestamp, repository, etc..) are composed of priv/pub key (correct-me if I'm wrong). I read a bit about TUF specification and saw algorithms like ed25519, rsassa-pss-sha256, etc.. and I was wondering which of them was used by default ?

If it was possible to have a small teaching or doc link to look into, it would be awesome !

Thank you :)

aabashkin commented 3 years ago

https://github.com/theupdateframework/notary/blob/master/client/client.go#L418

ECDSA. More specifically, it's probably ecdsa-sha2-nistp256 since that is what the TUF spec specifies.