Function wildland_crypto::identity::new_device_identity
source · [−]pub fn new_device_identity() -> SigningKeypairExpand description
Generate a device identity keypair. Each forest identity will have multiple device identities - one per user’s device. These identities are used to sign container manifests on behalf of the forest. List of device identities should be a part of “forest manifest”, which is signed by forest keypair itself. This establishes a trust chain, where by knowing forest identity pubkey, one can tell if particular container is legitimate or not. All without requiring that forest keypair secret is present on any of the devices.