On 2012.10.15. 20:26, Randy Bush wrote: >>> Making a tamper-evident box with SoftHSM is (I think) much easier to >>> do, more scalable and done quicker. >> Right. I think that one question has not been asked so far: why? What's >> the real benefit that you'd get out of this? > > sounds like a diy hsm to me.
Indeed, but that's not an answer to the question. Yes, it's a "cool project", and as such I like it too. But then it's not more than that. Robert > and i still want to understand the threat model motivating hsm use in > dnssec and rpki signing. > > randy +1 Robert _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
