hatter/local-mini-kms
1
1
Fork 0
Code Issues 2 Pull Requests Projects Releases Wiki Activity

update readme

Browse Source
This commit is contained in:
Hatter Jiang
2026-03-12 23:38:31 +08:00
parent 120526f6af
commit 6d3a79b701
1 changed files with 27 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
README.md
View File

@@ -129,3 +129,30 @@ ALTER TABLE keys
ADD COLUMN comment TEXT;
```
## How Local-Mini-KMS init
```text
┌──────────────────────────┐
│ Local Mini KMS │
Decrypt │ ┌─────────────────────┐ │
┌──────┐ ┌────────┤► │ Master Key │ │
│ App │ ◄────────┼┘ └─────────────────────┘ │
└──────┘ │ 1. Generate temp keypair│
│ Temp Private Key │6. Decrypt encrypted master key by Private key
│ Temp Public Key │7. Clear Private Key and Public Key
│ │ ▲ │
└──┼──────────────────┬────┘
│ │
│2.Get Public Key │5. Write Public Key encrypted master key
│ │
▼ │
3. Decrypt encrypted master key by YubiKey
4. Encrypt master key by Public Key
┌┬──────────────┐
┌┼│ YubiKey │
└┼│ │
└┴──────────────┘
```