Harding

It documents all the measures taken to provide a higher level of security beyond the “normal” security framework.

Creator signature

When a new identity is created, the client also stores a signed payload. This signature is verified by both the server and the client, and the signature chain is traced back to the operator.

This ensures that the identity requesting access to the secret will only receive it if the signature chain created was valid.