Module signed_public_key

A public encryption key alone is not authenticated. It needs to be tied to a cryptographic identity, which is provided by a signature keypair. This is done by signing the public key, and requiring consumers to verify the public key before consumption by using unwrap_and_verify.

Structs

SignedPublicKey

SignedAsymmetricPublicKey is a public encryption key, signed by the owner of the encryption keypair. This wrapping ensures that the consumer of the public key MUST verify the identity of the Signer before they can use the public key for encryption.

SignedPublicKeyMessage

SignedAsymmetricPublicKeyMessage is a message that once signed, makes a claim towards owning a public encryption key.

Enums

PublicKeyFormat 🔒

PublicKeyFormat defines the format of the public key in a SignedAsymmetricPublicKeyMessage. Currently, only ASN.1 Subject Public Key Info (SPKI) is used, but CoseKey may become another option in the future.