security: Add configuration based validator Change-Id: Ic5837f4b02a613966c0a2e969c974ebd0786f769

commit: defb5e4ede303b0c8f93bb73c2ba8a2aac465cce [log] [tgz]
author: Yingdi Yu <yuyingdi@gmail.com> Mon Mar 31 18:18:09 2014 -0700
committer: Yingdi Yu <yuyingdi@gmail.com> Tue Apr 01 14:40:38 2014 -0700
tree: 7b9af4b21da35bf86fa57135fde32d8e2df63b93
parent: d9e98736c06eae095fedc94651df3752db5e75b0 [diff] [blame]
diff --git a/validator.conf.sample b/validator.conf.sample
new file mode 100644
index 0000000..224d3d8
--- /dev/null
+++ b/validator.conf.sample

@@ -0,0 +1,40 @@
+rule
+{
+  id "NRD Prefix Registration Command Rule"
+  for interest
+  filter
+  {
+    type name
+    regex ^<localhost><nrd>[<register><unregister>]<>{3}$
+  }
+  checker
+  {
+    type customized
+    sig-type rsa-sha256
+    key-locator
+    {
+      type name
+      regex ^[^<KEY>]*<KEY><>*<ksk-.*><ID-CERT>$
+    }
+  }
+}
+rule
+{
+  id "Testbed Hierarchy Rule"
+  for data
+  filter
+  {
+    type name
+    regex ^[^<KEY>]*<KEY><>*<ksk-.*><ID-CERT><>$
+  }
+  checker
+  {
+    type hierarchical
+    sig-type rsa-sha256
+  }
+}
+trust-anchor
+{
+  type file
+  file-name "trust-anchor.cert"
+}
\ No newline at end of file
commit	defb5e4ede303b0c8f93bb73c2ba8a2aac465cce	[log] [tgz]
author	Yingdi Yu <yuyingdi@gmail.com>	Mon Mar 31 18:18:09 2014 -0700
committer	Yingdi Yu <yuyingdi@gmail.com>	Tue Apr 01 14:40:38 2014 -0700
tree	7b9af4b21da35bf86fa57135fde32d8e2df63b93
parent	d9e98736c06eae095fedc94651df3752db5e75b0 [diff] [blame]