From 6d3a79b701a3e95a041c3703d371c0401fdaec04 Mon Sep 17 00:00:00 2001
From: Hatter Jiang <jht5945@gmail.com>
Date: Thu, 12 Mar 2026 23:38:31 +0800
Subject: [PATCH] update readme

---
 README.md | 27 +++++++++++++++++++++++++++
 1 file changed, 27 insertions(+)

diff --git a/README.md b/README.md
index 5346087..fab84b7 100644
--- a/README.md
+++ b/README.md
@@ -129,3 +129,30 @@ ALTER TABLE keys
     ADD COLUMN comment TEXT;
 ```
 
+## How Local-Mini-KMS init
+
+```text
+                  ┌──────────────────────────┐
+                  │  Local Mini KMS          │
+          Decrypt │  ┌─────────────────────┐ │
+┌──────┐ ┌────────┤► │ Master Key          │ │
+│ App  │ ◄────────┼┘ └─────────────────────┘ │
+└──────┘          │  1. Generate temp keypair│
+                  │  Temp Private Key        │6. Decrypt encrypted master key by Private key
+                  │  Temp Public Key         │7. Clear Private Key and Public Key
+                  │  │                  ▲    │
+                  └──┼──────────────────┬────┘
+                     │                  │
+                     │2.Get Public Key  │5. Write Public Key encrypted master key
+                     │                  │
+                     ▼                  │
+
+                   3. Decrypt encrypted master key by YubiKey
+                   4. Encrypt master key by Public Key
+                   ┌┬──────────────┐
+                  ┌┼│ YubiKey      │
+                  └┼│              │
+                   └┴──────────────┘
+```
+
+