Manage keys for FISCO BCOS.
In FISCO BCOS consortium chain framework, each organization has their own key manager. Organization use key manager to manage their keys. Key manager is deployed in organization's internal network.
In disk encryption. This shows how key manager manages data key for nodes.
Each node has their own dataKey
and use dataKey
to communicate with its encrypted space. Node does not manage its dataKey
. It only has its cipherDataKey
. cipherDatakey
is the cipher of datakey
encrypted by superKey
. When node is booting, it sends cipherDataKey
to key manager, and key manager decrypts the cipherDataKey
using superKey
and return dataKey
to node. Node manage dataKey
in memory and drop it after shutting down.
git clone https://github.com/FISCO-BCOS/key-manager.git
Install
# In Centos
sudo yum install procps-ng-devel
# In ubuntu
sudo apt-get install libprocps-dev
cd key-manager
mkdir build
cd build
# For Centos
cmake3 .. # Notice: There are ".." behind.
# cmake3 .. -DBUILD_GM=On #When building "guomi" key-manager
# For ubuntu
cmake .. # Notice: There are ".." behind.
# cmake .. -DBUILD_GM=On #When building "guomi" key-manager
make
#The execution: "key-manager" generated.
./key-manager 31443 123xyz # key-manager <port> <superkey>
Print info when successfully started.
[1545471609499] [TRACE] key-manager stared. Port: 31443
All contributions are made under the GNU General Public License v3. See LICENSE.