Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Key revocation, expiration and management #7

Open
mbenlioglu opened this issue Nov 16, 2018 · 0 comments
Open

Key revocation, expiration and management #7

mbenlioglu opened this issue Nov 16, 2018 · 0 comments
Labels
bug Something isn't working design issue Problems related to structure of the repo help wanted Extra attention is needed
Milestone
Next Major Release

Comments

@mbenlioglu
Copy link
Owner

Problem

     Encryption/decryption keys that are used by client and server may expire or revoked any time! Currently the system does not explicitly handles such situations, and most likely won't work on its own, which will require manual manipulation of keys on both client & server sides in case of such a case.

Proposition

  • Add a key revocation scheme and overwrite expired/revoked keys with fresh ones. (Related to Old Keys are not overwritten #6 )
  • Check whether the keys in drive are updated, remove old key (don't just blatantly import what's there)
    • Need to be careful about security weaknesses here, make it clear what are we assuming
  • Actively request fresh keys from either side. (which will require a daemon to listen and respond such requests)
@mbenlioglu mbenlioglu added bug Something isn't working help wanted Extra attention is needed design issue Problems related to structure of the repo labels Nov 16, 2018
@mbenlioglu mbenlioglu added this to the Next Major Release milestone Nov 16, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working design issue Problems related to structure of the repo help wanted Extra attention is needed
Projects
None yet
Milestone
Next Major Release
Development

No branches or pull requests
1 participant
@mbenlioglu