You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Since the hybrid root of trust implementation, we are using the software key for nodes while leveraging TPM for origin authorization.
However, in the case we would like to reset a node but not lose the crypto seed (being stored on the node data folder), providing a hardware backup would be great.
Describe the solution you'd like
We can create a new function in the TPM C program, to store the node's seed securely, while loading into memory during the node execution.
At the startup, the node would request the TPM to unwrap the seed.
Hence, the seed would not be lost if the data is removed and rejoining of the network would be easier.
Additional context
No response
The text was updated successfully, but these errors were encountered:
Is your feature request related to a problem?
Since the hybrid root of trust implementation, we are using the software key for nodes while leveraging TPM for origin authorization.
However, in the case we would like to reset a node but not lose the crypto seed (being stored on the node data folder), providing a hardware backup would be great.
Describe the solution you'd like
We can create a new function in the TPM C program, to store the node's seed securely, while loading into memory during the node execution.
At the startup, the node would request the TPM to unwrap the seed.
Hence, the seed would not be lost if the data is removed and rejoining of the network would be easier.
Additional context
No response
The text was updated successfully, but these errors were encountered: