Calyx Institute HSM Provisioning Ceremony Scripts

Type

Security review

Client

The Calyx Institute

Date

2026-01

Domain

Crypto

Effort

1 wk

Section

Cryptography Reviews

Trail of Bits's security review of The Calyx Institute (Jan 2026) identified 3 issues: 1 medium, and 2 informational.

Findings · 3

1 Factory reset verifications are insufficient to prevent rogue admin keys Medium
2 The signing authentication key password entropy is below 80 bits Informational
3 Some keys have unnecessary capabilities Informational

Findings extracted from the published report PDF. See the full report below for details and remediation.

Open the PDF ↗