Some fresh ideas are always welcome for key rotation!
Any scheme has to handle well these cases:
1. A malicious attacker quickly rotating to a new key, which the original victim cannot rotate
2. No key theft occurs, but a user just maliciously rotates away the key of an unrelated, victim user.
For Simple key deletion, 1. is ok as it makes no sense for an attacker to use. To protect against 2., the event has to be signed by the corresponding private key (if this is not enforced, anyone can delete any key; the consequence is that it is not possible to use this in case of lost key).
The Social Key Migration sounds interesting. Though an attacker could be successful in convincing enough contacts to rotate to a new key controlled by them, some contacts would benevolently and unsuspectingly help.
optout
npub1kx…3lecx
2023-10-15 21:48:12
in reply to nevent1q…qa3s
Author Public Key
npub1kxgpwh80gp79j0chc925srk6rghw0akggduwau8fwdflslh9jvqqd3lecxPublished at
2023-10-15 21:48:12Event JSON
{
"id": "ce57bdac6919ff5d26828c3a92710292fce327db61a56a47b4401c66e9ebdbbe",
"pubkey": "b190175cef407c593f17c155480eda1a2ee7f6c84378eef0e97353f87ee59300",
"created_at": 1697399292,
"kind": 1,
"tags": [
[
"e",
"d7226dc994abb1fa94bb76b91f5c7a76225e3383f5efdf542d9e2c219f5ae185",
"",
"reply"
],
[
"p",
"fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52"
]
],
"content": "Some fresh ideas are always welcome for key rotation!\n\nAny scheme has to handle well these cases:\n1. A malicious attacker quickly rotating to a new key, which the original victim cannot rotate\n2. No key theft occurs, but a user just maliciously rotates away the key of an unrelated, victim user.\n\nFor Simple key deletion, 1. is ok as it makes no sense for an attacker to use. To protect against 2., the event has to be signed by the corresponding private key (if this is not enforced, anyone can delete any key; the consequence is that it is not possible to use this in case of lost key).\n\nThe Social Key Migration sounds interesting. Though an attacker could be successful in convincing enough contacts to rotate to a new key controlled by them, some contacts would benevolently and unsuspectingly help.\n",
"sig": "694262963dc823004960411a536719a3ff365b89f4c45e2c284d8f9c5dd684a0efea4e5b1d56e493bfafa54722446da3d97bca88284922b26d6fda6f8c1c5584"
}