Feature request: Enable signing/verifying using PKCS#11

secure-systems-lab / go-securesystemslib

Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU

MIT License

21 stars 23 forks source link

Feature request: Enable signing/verifying using PKCS#11 #53

Open udf2457 opened 1 year ago

udf2457 commented 1 year ago

I would be useful if the lib could be expanded to include PKCS#11 (so for example, people using Yubikeys, smart cards or traditional HSMs could work with securesystemslib).

This request originates from an old go-tuf request, but since they have securesystemslib as a dependency I guess it ultimately falls to you guys to (hopefully !) implement.

adityasaky commented 1 year ago

I think adding that would certainly be very valuable, for both TUF and in-toto. The blocker I foresee is developer bandwidth to implement this. I can, however, promise review time. Do you think you could submit a PR?