Reverse the order of signatures in roll-over #113

bifurcation · 2016-04-04T13:27:49Z

As discussed in the thread about Karthik's analysis, we can have a fairly clean recovery story (assuming a MAC key can be provisioned. As a first step, we should reverse the order of the signatures in the roll-over request object.

OLD: Sign(K_old_priv, Sign(K_new_priv, Fingerprint(K_old_pub)))
NEW: Sign(K_new_priv, Sign(K_old_priv, Fingerprint(K_new_pub)))

The text was updated successfully, but these errors were encountered:

bifurcation mentioned this issue Apr 4, 2016

Specify MAC-based recovery (assuming MAC key) #114

Closed

bifurcation modified the milestone: WGLC May 10, 2016

bifurcation added a commit that referenced this issue May 27, 2016

Swap the order of signatures for rollover (#113)

1661aee

bifurcation mentioned this issue May 27, 2016

Swap the order of signatures for rollover #132

Merged

bifurcation closed this as completed in #132 May 27, 2016

bifurcation added a commit that referenced this issue May 27, 2016

Swap the order of signatures for rollover (#113) (#132)

fcca51d

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Reverse the order of signatures in roll-over #113

Reverse the order of signatures in roll-over #113

bifurcation commented Apr 4, 2016

Reverse the order of signatures in roll-over #113

Reverse the order of signatures in roll-over #113

Comments

bifurcation commented Apr 4, 2016