public
/
docs
5
0
Fork 0
Code Issues 8 Pull Requests 2 Packages Projects Releases Wiki Activity

Specify how to sign/verify AirgapOS hashes #26

New Issue
Open
opened 2024-12-19 21:11:38 +00:00 by scjudd · 2 comments
scjudd commented 2024-12-19 21:11:38 +00:00
Member
Copy Link

In the "Setup Steps" for AirgapOS:

  1. Commit the hash of airgap to a git repo, ensuring the commit is signed

Some more instruction here would be good:

  • Where should one commit this?
  • How to perform a signed commit?
  • How to establish that a particular commit signature 'means' something (i.e., we have a trusted keyring set up)
  • Where later in the process is this commit signature verified?
In the ["Setup Steps" for AirgapOS](https://git.distrust.co/public/docs/src/commit/57faca72fdb54682ca119f41c3250eee8cf7c795/quorum-key-management/src/one-time-use-airgapos.md#setup-steps): > 7. Commit the hash of airgap to a git repo, ensuring the commit is signed Some more instruction here would be good: - Where should one commit this? - How to perform a signed commit? - How to establish that a particular commit signature 'means' something (i.e., we have a trusted keyring set up) - Where later in the process is this commit signature verified?
anton commented 2024-12-23 22:20:19 +00:00
Owner
Copy Link

This can live in the ceremonies repository. I wrote a document about how this repository is set up, and it can be the place where we put all artifacts related to ceremonies:

This can live in the `ceremonies` repository. I wrote a document about how this repository is set up, and it can be the place where we put all artifacts related to ceremonies: * https://git.distrust.co/public/docs/src/branch/main/quorum-key-management/src/component-documents/ceremony-repository.md
anton commented 2025-01-03 19:42:52 +00:00
Owner
Copy Link

@scjudd please let me know if my previous comment addresses your concerns.

@scjudd please let me know if my previous comment addresses your concerns.
anton added the
qvs
 label 2025-01-04 15:37:37 +00:00
anton added this to the Custody Framework project 2025-02-17 06:23:08 +00:00
anton added this to the Vaulting Framework Documentation milestone 2025-02-17 06:23:15 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
anton/add-commit-hash-to-title
anton/clean-up
lance/personal-pgp-cleanup
feat/generate-sol-address-doc
feat/use-mini-quorum
feat/export-namespace-mnemonic
feat/decrypt-namespace-secret
feat/encrypt-wallet-to-namespace
feat/encryption-key-generation
feat/tamper-proofing-chain-of-custody
coding-standards
feat/quorum-kms
Labels
Clear labels   
level-2

   
level-3

   
level-4

   
qvs

Quorum Vaulting System

No Label
level-2
level-3
level-4
qvs
Milestone
Clear milestone
No items
No Milestone
Vaulting Framework Documentation
Projects
Clear projects
No project
Custody Framework
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: public/docs#26
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?