Type Members

1.  trait SyncCryptoSigner extends NamedLogging

   Aggregates all methods related to protocol signing.

   Aggregates all methods related to protocol signing. These methods require a topology snapshot to ensure the correct signing keys are used, based on the current state (i.e., OwnerToKeyMappings).

2.  class SyncCryptoSignerWithLongTermKeys extends SyncCryptoSigner

   Defines the default methods for protocol signing that use a topology snapshot for key lookup.

   Defines the default methods for protocol signing that use a topology snapshot for key lookup. This approach uses the signing APIs registered in Canton's com.digitalasset.canton.crypto.Crypto object at node startup.

3.  class SyncCryptoSignerWithSessionKeys extends SyncCryptoSigner

   Defines the methods for protocol message signing using a session signing key.

   Defines the methods for protocol message signing using a session signing key. This requires signatures to include information about which session key is being used, as well as an authorization by a long-term key through an additional signature. This extra signature covers the session key, its validity period, and the synchronizer for which it is valid. This allows us to use the session key, within a specific time frame and synchronizer, to sign protocol messages instead of using the long-term key. Session keys are intended to be used with a KMS/HSM-based provider to reduce the number of signing calls and, consequently, lower the latency costs associated with such external key management services.