1 // Copyright 2014 The Chromium Authors. All rights reserved. 2 // Use of this source code is governed by a BSD-style license that can be 3 // found in the LICENSE file. 4 5 syntax = "proto2"; 6 7 option optimize_for = LITE_RUNTIME; 8 9 package enterprise_management; 10 11 // Contains a signing key and its signature. 12 message PolicySigningKey { 13 // The key used to verify policy blobs sent down from the server. 14 optional bytes signing_key = 1; 15 16 // The signature for this signing key (verified using a hard-coded key 17 // stored in the Chrome binary). This is essentially a certificate (key 18 // signed with another well-known key that establishes a trust root). 19 optional bytes signing_key_signature = 2; 20 21 // This is the hard-coded verification key used to generate/verify the 22 // signing_key_signature. We track this in the cache data so we know which 23 // verification key to use when validating the cached policy (important when 24 // doing key rotation). 25 optional bytes verification_key = 3; 26 } 27
