I wouldn't be too concerned about periods where the root chain is not advanced. The crypto should still be strong enough to protect the message contents against offline attacks.
Take for example OpenPGP with keys over curve25519. There *every* message is encrypted with the same key, yet it is not broken at all. I'd rather see break-in recovery as a nice bonus. Paul
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: [email protected] _______________________________________________
