Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/blaine/statuses/112102087381890778">blaine (blaine@mastodon.social)'s status on Saturday, 16-Mar-2024 09:37:46 JST</a><a href="https://mastodon.social/@blaine" title="blaine@mastodon.social"><img src="https://gnusocial.jp/avatar/24703-48-20221112232851.webp" width="48" height="48" alt="blaine" style="position: absolute; left: 0; top: 0;">blaine</a><div><a href="https://mastodon.blanu.net/@brandon/112101988742450986" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/232676" title="brandon@mastodon.blanu.net">Dr. Brandon Wiley</a></li></ul></div></section><article><p><a href="https://mastodon.blanu.net/@brandon">@brandon</a> <a href="https://cosocial.ca/@evan">@evan</a> my main observation here is that end-users should never have to think about or manage their keys, because (1) they don't care and (2) ultimately they will lose their keys.</p><p>For those reasons alone, key management is a hard problem, and will always remain a hard problem.</p><p>If an architectural solution  depends on keys, service providers need to be prepared to reissue those keys on behalf of their users, and the architecture should be capable of handling disjointed key rotation.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2828394#notice-5616191">In conversation</a><time datetime="2024-03-16T09:37:46+09:00" title="Saturday, 16-Mar-2024 09:37:46 JST">about 8 months ago</time> <span>from <span><a href="https://mastodon.social/@blaine/112102087381890778" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@blaine/112102087381890778">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
blaine (blaine@mastodon.social)'s status on Saturday, 16-Mar-2024 09:37:46 JSTblaine
in reply to
- Evan Prodromou
- Dr. Brandon Wiley
@brandon @evan my main observation here is that end-users should never have to think about or manage their keys, because (1) they don't care and (2) ultimately they will lose their keys.
For those reasons alone, key management is a hard problem, and will always remain a hard problem.
If an architectural solution depends on keys, service providers need to be prepared to reissue those keys on behalf of their users, and the architecture should be capable of handling disjointed key rotation.
In conversationabout 8 months ago from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice