this post was submitted on 13 Sep 2023
36 points (92.9% liked)
Privacy
31609 readers
81 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I would treat GPG and PGP that same thing as they suffer the same problem like long lived root key, and problematic key management.
They don’t have to; that’s all in how you use them. You can set a short expiration rotating root key if you want.
Key management you can’t really avoid; either the key remains private or you have to trust someone to host the public key that multiple people trust. Again, you can set up an expiry cycle.
Personally, what I’ve done is kept a closely held 4096-bit keypair as a master, and then used that to sign my rotating keysets; that way, people can verify that it’s the same master key used to sign all of them, but it’s the short term public key I publish.
So if for some reason it expires before I can re-sign, I can still use the root key to get things working again.
In practice it’s worked for me for 25 years, so I’m happy.
So you have two keys: master and ephemeral key. Both are independent to each other. Mater doesn't expire and ephemeral will have a short period of validity.
You kept the master key secure, and using it to certify the ephemeral key with a expire date?
You still need to publish the master's public key to key server for everyone knows and verify you signed the ephemeral key isn't?
No, they just have to know that the signer hash is the same for each ephemeral key in the chain. If someone required more validation than that, I’d have to share the public key, but in real life that’s never come up.
Please correct me if I misunderstood.
You have one master key (root). This key have strong connection to your identity. However, you kept this in secret.
You have one or more ephemeral keys (edge). You can dedicate each key for different purposes. You sign these keys with the root key.
If I'm not mistaken, it's essentially the "Web of Trust". How do people trust your edge keys without knowing the root's public key by "the signer hash is the same"? While I can see the certification on your edge key, I can't build a trust path as I don't have your root's public key.
I don't really understand "each ephemeral key in the chain". What chain actually? Chain as in " Web of Trust"? Or as in subkeys?