Closed mkeeter closed 2 weeks ago
See RFD 492 § Sketch of an unlock policy for the backstory here.
This adds a new kind of UnlockChallenge, which requires that the caller generate an SSH signature of a particular blob of data, using a trusted key that is baked into the SP's firmware.
UnlockChallenge
(opened as a draft pending testing)
See RFD 492 § Sketch of an unlock policy for the backstory here.
This adds a new kind of
UnlockChallenge, which requires that the caller generate an SSH signature of a particular blob of data, using a trusted key that is baked into the SP's firmware.(opened as a draft pending testing)