signer api: clarify keyids in signatures

secure-systems-lab / securesystemslib

Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU

MIT License

48 stars 49 forks source link

signer api: clarify keyids in signatures #670

Open lukpueh opened 1 year ago

lukpueh commented 1 year ago

keyids are an under-documented yet important concept in securesystemslib, as they allow to map a verification key to a signature. But from the current state of docs it is unclear how signatures get their keyids.

In https://github.com/secure-systems-lab/securesystemslib/issues/605 we agreed to mandate public_key: Key attribute for any Signer implementation. We should document that that public key's keyid is assigned to a signature created with Signer.sign.

lukpueh commented 1 year ago

Related #587

lukpueh commented 7 months ago

Related #416