You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Feb 27, 2024. It is now read-only.
Henk van Cann edited this page May 30, 2023
·
6 revisions
Definition
Revocation is the act of recall or annulment. It is the cancelling of an act, the recalling of a grant or privilege, or the making void of some deed previously existing.
More on source Wikipedia
KERI related
An event that revokes control authority over an identifier. From that point in time the authoritative key-pairs at hand are not valid anymore.
The time stamp of a revocation is useful but not for security purposes, it can be gamed by an attacker. KERI should be fitted in a way so that it's not possible to rewrite history. The tool we have is the ordering of the events in a KEL.
Beware: Suspension is non-existing
A temporary revocation of a grant or privilege is called a suspension. We don't have this type of state or event in KERI.