Project

General

Profile

Feature #15604

Act on the reviews of our revocation certificate mechanism

Added by sajolida 9 months ago. Updated 23 days ago.

Status:
Confirmed
Priority:
Normal
Assignee:
Category:
Infrastructure
Target version:
Start date:
05/16/2018
Due date:
% Done:

0%

QA Check:
Feature Branch:
Type of work:
Contributors documentation
Blueprint:
Starter:
Affected tool:

Description

We received the reviews by email on (<> and <>).

Summary:

  • Consider splitting a revocation key instead of a revocation certificate. The benefit would be to have an expiry date on the key, which is not the case with a certificate.
  • Regularly check with the people in the scheme to make sure that the communication channel with them is still working and that they still have the instructions and their share.
  • Update "until we publish a new signing key" in the document as it won't be enough to build again trust within our user base (cf. other possible fake keys on the public key servers).

Related issues

Related to Tails - Feature #10022: Have experts review our revocation mechanism of Tails signing key In Progress 08/14/2015

History

#1 Updated by sajolida 6 months ago

  • Target version changed from Tails_3.9 to Tails_3.10.1

#2 Updated by sajolida 4 months ago

  • Target version changed from Tails_3.10.1 to Tails_3.11

#3 Updated by sajolida 3 months ago

  • Related to Feature #10022: Have experts review our revocation mechanism of Tails signing key added

#4 Updated by sajolida 2 months ago

  • Target version changed from Tails_3.11 to Tails_3.12

#5 Updated by sajolida 23 days ago

  • Target version changed from Tails_3.12 to Tails_3.13

Also available in: Atom PDF