Thanks to @jpmens we now have documentation for Cascade describing how to integrate with a Nitrokey NetHSM to store your DNSSEC keys.
Thanks a lot! 馃А
alcinnz
boosted
New blog article: "Using a second #OpenPGP card for my primary key"
https://openpgp.foo/posts/2025-07-a-second-card/
This is a rather niche article, but I hope it will still contain some bits of interest, for at least some readers 馃.
In it, I import my primary OpenPGP key onto a second OpenPGP card hardware device, and use the device to issue a third-party certification with rsop-oct.
I also outline some background and tradeoffs around different OpenPGP card setup.
New blog article: "Using a second #OpenPGP card for my primary key"
https://openpgp.foo/posts/2025-07-a-second-card/
This is a rather niche article, but I hope it will still contain some bits of interest, for at least some readers 馃.
In it, I import my primary OpenPGP key onto a second OpenPGP card hardware device, and use the device to issue a third-party certification with rsop-oct.
I also outline some background and tradeoffs around different OpenPGP card setup.
St茅phane Bortzmeyer
boosted
We have a retired SafeNet Luna 4 #HSM in the office for testing our Nameshed HSM code, but we're having a bit of a hard time obtaining a PKCS#11 Linux library / SDK for it.
(Plan B would be someone giving us testing access to their Thales Luna)
Is there anyone who can help @ximon18 out? Sharing is caring. 馃挌 #DNS#DNSSEC#OpenSource
We have a retired SafeNet Luna 4 #HSM in the office for testing our Nameshed HSM code, but we're having a bit of a hard time obtaining a PKCS#11 Linux library / SDK for it.
(Plan B would be someone giving us testing access to their Thales Luna)
Is there anyone who can help @ximon18 out? Sharing is caring. 馃挌 #DNS#DNSSEC#OpenSource