ParaTime Key Manager
The design of the reference ParaTime key manager favors simplicity, reliabilityauditability. and ease of implementation over features even those focused on security. Because key managers are matched with ParaTimes, a ParaTime developer can decide to use ourreference implementation or to build their own keymanager as needed.
The design is similar in some ways to Google's cloudkey management system, though it takes advan-tage of TEE features that were unavailable at thetime of that system's (initial) design. The fundamen-tal idea is to use key splitting from a master key toderive additional keys. In the ParaTime key managerthese are per-contract state storage encryption keys.
Last updated