我正在我的 mac 应用程序中集成 sparkle 以自动更新应用程序。遵循这个,但我对第 3 步有疑问Segue for security concerns
EdDSA (ed25519) signatures
To prepare signing with EdDSA signatures:
First, run ./bin/generate_keys tool (from the Sparkle distribution root). This needs to be done only once. This tool will do two things: * It will generate a private key and save it in your login Keychain on your Mac. You don’t need to do anything with it, but don’t lose access to your Mac’s Keychain. If you lose it, you may not be able to issue any new updates! * It will print your public key to embed into applications. Copy that key (it’s a base64-encoded string). You can run ./bin/generate_keys again to see your public key at any time.
Add your public key to your app’s Info.plist as a SUPublicEDKey property.
我对这个实现有几个问题
1.如果我将来丢失了存储在钥匙串中的私钥怎么办
2.我们可以将这个私人存储在其他任何地方以确保安全吗
为了安全起见,我可以遵循哪些最佳实践。任何有详细解释的专家将不胜感激。
我曾尝试导出私钥,但没有选项这是存储在 keychain 中的私钥。这些是我在尝试导出时得到的选项。
有什么建议么 ?
提前致谢 !!