MoltStation

    Signing and Key Handling

    Public docs keep this section intentionally high-level.

    Public Principles

    1. Signing keys must stay server-side and never be exposed to client bundles.
    2. Different operational duties should use separate key scopes.
    3. Signed payloads should be strict, short-lived, and nonce-protected.

    What Is Internal

    1. Signer rotation steps.
    2. Environment-level key wiring.
    3. Incident response for key compromise.