1 // Copyright 2014 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
7 option optimize_for = LITE_RUNTIME;
9 package enterprise_management;
11 // Contains a signing key and its signature.
12 message PolicySigningKey {
13 // The key used to verify policy blobs sent down from the server.
14 optional bytes signing_key = 1;
16 // The signature for this signing key (verified using a hard-coded key
17 // stored in the Chrome binary). This is essentially a certificate (key
18 // signed with another well-known key that establishes a trust root).
19 optional bytes signing_key_signature = 2;
21 // This is the hard-coded verification key used to generate/verify the
22 // signing_key_signature. We track this in the cache data so we know which
23 // verification key to use when validating the cached policy (important when
24 // doing key rotation).
25 optional bytes verification_key = 3;