Den 28 sep 2014 17:21 skrev "Phillip Hallam-Baker" <[email protected]>: > > The part I have not worked out yet is how to manage escrow of > decryption keys. Which is an essential requirement that is in conflict > with other requirements. It is easy enough to make a scheme escrowed > or escrow free. What is hard is to allow the user to easily choose > between them.
Don't escrow private key material. Allow for specification of which entities that have the authority to declare a new key as the successor of your previous one, and conditions such as n-of-m chosen entities is required and that the declaration must be put in that Big Log. I've got a bunch of other ideas of this kind I'm going to write down in a long email to these crypto related lists soon-ish.
_______________________________________________ Endymail mailing list [email protected] https://www.ietf.org/mailman/listinfo/endymail
