Manage keys for FISCO BCOS.
In FISCO BCOS consortium chain framework, each organization has their own key manager. Organization use key manager to manage their keys. Key manager is deployed in organization's internal network.
In disk encryption. This shows how key manager manages data key for nodes.
Each node has their own dataKey and use dataKey to communicate with its encrypted space. Node does not manage its dataKey. It only has its cipherDataKey. cipherDatakey is the cipher of datakeyencrypted by superKey. When node is booting, it sends cipherDataKey to key manager, and key manager decrypts the cipherDataKey using superKey and return dataKey to node. Node manage dataKey in memory and drop it after shutting down.
git clone https://github.com/FISCO-BCOS/key-manager.gitInstall
# In Centos
sudo yum install procps-ng-devel
# In ubuntu
sudo apt-get install libprocps-devcd key-manager
mkdir build
cd build
# For Centos
cmake3 .. # Notice: There are ".." behind.
# cmake3 .. -DBUILD_GM=On #When building "guomi" key-manager
# For ubuntu
cmake .. # Notice: There are ".." behind.
# cmake .. -DBUILD_GM=On #When building "guomi" key-manager
make
#The execution: "key-manager" generated../key-manager 31443 123xyz # key-manager <port> <superkey>Print info when successfully started.
[1545471609499] [TRACE] key-manager stared. Port: 31443
All contributions are made under the GNU General Public License v3. See LICENSE.