<div dir="ltr"><div class="gmail_extra"><div class="gmail_quote">On Fri, Jan 2, 2015 at 1:47 AM, carlo von lynX <span dir="ltr"><<a href="mailto:lynX@i.know.you.are.psyced.org" target="_blank" onclick="window.open('https://mail.google.com/mail/?view=cm&tf=1&to=lynX@i.know.you.are.psyced.org&cc=&bcc=&su=&body=','_blank');return false;">lynX@i.know.you.are.psyced.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Tony, I would like to challenge the idea of necessity of a "bootstrap<br>
message" - that is to write to a person by either using her master<br>
key or encrypting to all currently known keys. If you are in a social<br>
relationship with that person you must have absolved a communication<br>
bootstrap procedure (using QR codes, shared secrets, social graph<br>
adoption or bluetooth handshake.. whatever) and thus you should be<br>
having an ongoing ephemeral key for each person you talk to. Both<br>
Briar and Pond use ephemerals once the communication is started. The<br>
challenge in this case is rather to synchronize the ephemerals among<br>
the devices, and that can be done with a pubsub channel link between<br>
the devices. Doesn't that make sense?</blockquote><div><br></div><div>How do you handle network partitions? As a more specific example, how do you handle two devices which aren't ever necessarily on at the same time? Do you synchronize this ephemeral key via an always-on server of some sort?</div><div><br></div><div>My larger question was about revocation though. If you've lost one of the devices containing your long-lived key, now what? Do you revoke it or not and if so, how do you synchronize the new key to all devices?</div><div><br></div><div>Having a separate key per device makes revocation easier, as you can just revoke a device-specific key then go on your way. </div></div><div><br></div>-- <br><div class="gmail_signature">Tony Arcieri<br></div>
</div></div>