On Aug 28, 2014, at 1:08 PM, Joseph Bonneau <[email protected]> wrote:
> Either way, I agree that on the hard questions of determining ground truth > and not showing tons of spurious warnings we're exactly where we were when > the last thread on messaging transparency[1] died in March. There are still > painful edge cases like if Alice's client doesn't know that Alice enrolled a > new device with a new key yet and warns that a spurious key has been added, > which is I discussed over on Google's wiki for this project and haven't heard > a compelling answer for. What do you think of this answer: Alice's private key is encrypted with her password and stored anywhere (centralized or decentralized service). The new device downloads and uses this same public/private keypair from said service. Public key is stored in blockchain. All is good. ? Kind regards, Greg Slepak -- Please do not email me anything that you are not comfortable also sharing with the NSA.
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Messaging mailing list [email protected] https://moderncrypto.org/mailman/listinfo/messaging
