[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Key revocation
On Thu, Apr 29, 2010 at 6:13 PM, Colin Percival <cperciva@tarsnap.com> wrote:
> Colin Percival wrote:
>> Gleb Arshinov wrote:
>>> Anyway, I think key revocation would be very handy for our use. [...]
>>
>> Good points. I've added this to my Tarsnap to-do list. You won't be able
>> to change the encryption keys, of course, but changing the access keys
>> will be better than nothing and possibly enough for most people.
>
> Just to clarify, what I mean here (and what I think Gleb means) is *changing*
> the keys which are used to access a machine's data. That is, key rotation,
> not key revocation.
Ah, good, now I know what key rotation is :-)
Best regards,
Gleb