Support secp256k1, Ed25519, bls12-381 curves in KMS functionality. #5333
0xBlocky
started this conversation in
Feature Request
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Currently, the Infisical KMS supports ECC_NIST_P256 and RSA_4096. However, these curves are incompatible with the majority of blockchain networks, which require the secp256k1 curve for transaction signing (ECDSA). This prevents users from using Infisical to securely manage private keys for Bitcoin, Ethereum, and other EVM-compatible chains.
Describe the solution you'd like
Add support for the secp256k1 elliptic curve to the Infisical KMS. This should include:
The ability to generate secp256k1 asymmetric keys.
Support for signing and verification using ECDSA on the secp256k1 curve.
Describe alternatives you've considered
Using external KMS providers like AWS KMS or Google Cloud KMS, which natively support secp256k1.
Additional context
Adding this would allow Infisical to serve as a secure backend for Web3 infrastructure, enabling programmatic transaction signing directly from the KMS. Supporting Ed25519 in the future would also be beneficial for Solana and Polkadot ecosystems.
Beta Was this translation helpful? Give feedback.
All reactions