#tuf #kms #key #repository

tough-kms

Implements AWS KMS as a key source for TUF signing keys

21 releases (11 breaking)

0.12.0 Mar 27, 2025
0.11.0 Oct 10, 2024
0.10.0 Sep 4, 2024
0.9.0 Mar 15, 2024
0.1.1 Nov 11, 2020

#732 in Cryptography

Download history 36/week @ 2024-12-22 15/week @ 2024-12-29 10/week @ 2025-01-05 10/week @ 2025-01-12 23/week @ 2025-01-19 25/week @ 2025-01-26 46/week @ 2025-02-02 20/week @ 2025-02-09 75/week @ 2025-02-16 316/week @ 2025-02-23 143/week @ 2025-03-02 118/week @ 2025-03-09 24/week @ 2025-03-16 115/week @ 2025-03-23 59/week @ 2025-03-30 68/week @ 2025-04-06

270 downloads per month
Used in tuftool

MIT/Apache

370KB
7K SLoC

tough-kms implements the KeySource trait found in tough, a Rust TUF client.

By implementing this trait, AWS KMS can become a source of keys used to sign a TUF repository.

Testing

Unit tests are run in the usual manner: cargo test.


tough-kms implements the KeySource trait found in tough, a Rust TUF client. By implementing this trait, AWS KMS can become a source of keys used to sign a TUF repository.

Dependencies

~114MB
~2.5M SLoC