Comment by oneplane
1 month ago
If the long-lived token is actually a private key that is non-retrievable and the secrecy and origin is attested by a HSM, I'm fine with that.
1 month ago
If the long-lived token is actually a private key that is non-retrievable and the secrecy and origin is attested by a HSM, I'm fine with that.
No comments yet
Contribute on Hacker News ↗