Re: draft-ietf-openpgp-rfc2440bis-06.txt


Bodo Moeller <moeller(_at_)cdc(_dot_)informatik(_dot_)tu-darmstadt(_dot_)de> 
writes:

Please point out an advantage of *key* expiration over
*self-signature* expiration in that scenario.


A bad guy gets a copy of my private key..  If there is a key
expiration then they cannot keep it alive indefinitely.  Or is key
compromise not an attack you care about? ;)

-derek
-- 
       Derek Atkins
       Computer and Internet Security Consultant
       derek(_at_)ihtfp(_dot_)com             www.ihtfp.com

<Prev in Thread]	Current Thread	[Next in Thread>
Re: draft-ietf-openpgp-rfc2440bis-06.txt, (continued) Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Message not available Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Re: draft-ietf-openpgp-rfc2440bis-06.txt, Jon Callas Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Re: draft-ietf-openpgp-rfc2440bis-06.txt, Jon Callas Message not available Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Re: draft-ietf-openpgp-rfc2440bis-06.txt, Werner Koch Re: draft-ietf-openpgp-rfc2440bis-06.txt, Jon Callas Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller Re: draft-ietf-openpgp-rfc2440bis-06.txt, Derek Atkins <= Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller RE: draft-ietf-openpgp-rfc2440bis-06.txt, Richie Laager Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller RE: draft-ietf-openpgp-rfc2440bis-06.txt, Richie Laager Re: draft-ietf-openpgp-rfc2440bis-06.txt, Bodo Moeller RE: draft-ietf-openpgp-rfc2440bis-06.txt, Richie Laager Re: draft-ietf-openpgp-rfc2440bis-06.txt, Len Sassaman More on key expiration policy (Re: draft-ietf-openpgp-rfc2440bis-06.txt), Michael Young Re: More on key expiration policy (Re: draft-ietf-openpgp-rfc2440bis-06.txt), Len Sassaman Re: More on key expiration policy (Re: draft-ietf-openpgp-rfc2440bis-06.txt), Bodo Moeller