1.2.14 Exascale User Credentials

Exascale user authentication uses public and private key pairs, with user credentials stored in a digital key store.

Each Exascale user is associated with a public key. To prove their identity and connect to Exascale, a user must supply the matching private key.

Exascale user credentials are contained in a digital key store, also known as a wallet. To use Exascale, a user's wallet must contain their private key. It must also contain a copy of the Exascale trust store. As a matter of convenience, a wallet can also store the default endpoint for Exascale control services.

To facilitate flexible key management, each Exascale user can be associated with up to three public and private key pairs. However, each wallet should contain only one Exascale user name and one private key.

For maximum security, an Exascale user should create their own public and private key pairs and manage their own wallet. This is recommended to ensure the integrity of the private keys, since the user should never share a private key, not even with the Exascale administrator.