[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Key revocation



On Thu, Apr 29, 2010 at 6:13 PM, Colin Percival <cperciva@tarsnap.com> wrote:
> Colin Percival wrote:
>> Gleb Arshinov wrote:
>>> Anyway, I think key revocation would be very handy for our use. [...]
>>
>> Good points.  I've added this to my Tarsnap to-do list.  You won't be able
>> to change the encryption keys, of course, but changing the access keys
>> will be better than nothing and possibly enough for most people.
>
> Just to clarify, what I mean here (and what I think Gleb means) is *changing*
> the keys which are used to access a machine's data.  That is, key rotation,
> not key revocation.

Ah, good, now I know what key rotation is :-)

Best regards,

Gleb