Extending the key expiration date
David Champion
dgc@uchicago.edu
Wed Sep 5 20:50:02 2001
On 2001.09.05, in <20010905142745.A2054@akamai.com>,
"David Shaw" <dshaw@jabberwocky.com> wrote:
>
> Sure, but you can revoke the key, which trumps the attacker :)
But that requires a key update by any peer who already has your key
locally cached, whereas an irrevocable key expiry does not. Expiry is
a more reliable cap on key abuse in a deep network where you cannot
send updates to every peer who's used your key... or it would be, if it
weren't flawed. :)
--
-D. dgc@uchicago.edu NSIT University of Chicago