- From: Manu Sporny <msporny@digitalbazaar.com>
- Date: Mon, 02 Nov 2015 23:33:14 -0500
- To: Web Payments CG <public-webpayments@w3.org>
On 11/02/2015 06:06 PM, David Nicol wrote: >> What happens when you lose the private key associated with >> matching public key? > > you don't do that. :) - that's one approach. That's also a non-starter for most anyone that wants a long-lived identifier. Accidents happen. Crypto is broken. You don't want to tie your identity to some mathematical thing that happens to be secure today but may be gone or compromised tomorrow. The current approach for the WebDHT is to loosely couple identifiers and the keys that you can use to prove that those identifiers are yours. For example, the WebDHT enables you to specify a set of keys or other identifiers that should have write access to the entry in the DHT. This means that even in the event of a key loss, you can recover that identifier by asking people (or services) that you trust to associate a new device/keypair with the identifier. -- manu -- Manu Sporny (skype: msporny, twitter: manusporny, G+: +Manu Sporny) Founder/CEO - Digital Bazaar, Inc. blog: Web Payments: The Architect, the Sage, and the Moral Voice https://manu.sporny.org/2015/payments-collaboration/
Received on Tuesday, 3 November 2015 04:33:45 UTC