Lib.rs

CryptographyTough
#aws-kms #tuf #kms

tough-kms

Implements AWS KMS as a key source for TUF signing keys

by iliana etaoin, Samuel Karp, awslabs, sam-berning and 7 contributors

22 releases (12 breaking)

0.13.0 Apr 22, 2025
0.12.0 Mar 27, 2025
0.11.0 Oct 10, 2024
0.9.0 Mar 15, 2024
0.1.1 Nov 11, 2020

#1114 in Cryptography

Download history 392/week @ 2025-05-28 340/week @ 2025-06-04 347/week @ 2025-06-11 331/week @ 2025-06-18 632/week @ 2025-06-25 894/week @ 2025-07-02 83/week @ 2025-07-09 102/week @ 2025-07-16 62/week @ 2025-07-23 58/week @ 2025-07-30 34/week @ 2025-08-06 24/week @ 2025-08-13 91/week @ 2025-08-20 26/week @ 2025-08-27 30/week @ 2025-09-03 36/week @ 2025-09-10

189 downloads per month
Used in tuftool

MIT/Apache

370KB
7K SLoC

tough-kms implements the KeySource trait found in tough, a Rust TUF client.

By implementing this trait, AWS KMS can become a source of keys used to sign a TUF repository.

Testing

Unit tests are run in the usual manner: cargo test.

tough-kms implements the KeySource trait found in tough, a Rust TUF client. By implementing this trait, AWS KMS can become a source of keys used to sign a TUF repository.

Dependencies

~121MB
~3M SLoC