You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
it seems advisable that not only the next key, but also an arbitrary number of keys after the next can be predetermined.
this could allow users to not have to make the painful tradeoff between disabling use of the compromised key as quickly as possible and gaining confidence that the environment they are using to publish a rotation is secure. with a buffer of more than one key they would not be forced to create a new key and thus expose their identity to capture just to disable an active one.
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
it seems advisable that not only the next key, but also an arbitrary number of keys after the next can be predetermined.
this could allow users to not have to make the painful tradeoff between disabling use of the compromised key as quickly as possible and gaining confidence that the environment they are using to publish a rotation is secure. with a buffer of more than one key they would not be forced to create a new key and thus expose their identity to capture just to disable an active one.
are there any plans to make provisions for this?
Beta Was this translation helpful? Give feedback.
All reactions