Extending the key expiration date

David Champion dgc@uchicago.edu
Wed Sep 5 20:50:02 2001


On 2001.09.05, in <20010905142745.A2054@akamai.com>,
	"David Shaw" <dshaw@jabberwocky.com> wrote:

>
> Sure, but you can revoke the key, which trumps the attacker :)
But that requires a key update by any peer who already has your key locally cached, whereas an irrevocable key expiry does not. Expiry is a more reliable cap on key abuse in a deep network where you cannot send updates to every peer who's used your key... or it would be, if it weren't flawed. :) -- -D. dgc@uchicago.edu NSIT University of Chicago