[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] Recommended private key management and recovery

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: [tor-talk] Recommended private key management and recovery
From: Virgil Griffith <i@xxxxxxxxx>
Date: Thu, 16 Jul 2015 13:28:09 +0800
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 16 Jul 2015 01:28:42 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=virgil.gr; s=dkim; h=mime-version:from:date:message-id:subject:to:content-type; bh=tu36RwKH7rOoc2IXMHPjbaYnFg96/Bw+6XDEE08ypPo=; b=PKtDGNg7QqftWEhNAFwN+FRMDoroRCONNKy2Gu+rz+VmhEATw4iZZh7FIIUlfeSGAz YPNYKu0U7BkKtDLYnAJLRMlkA5GH7znEftLdn0crUiIS+N2XvJ+Gl45PDR5RmN8B614J rlmhG9vmwIEfthUsxEsdf1mtK8iSOkJN42oPw=
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

Hello tor-talk!

I have an operations question for those in high-security orgs:
* How do you manage your private keys?
* How do you do recover from a key-compromise?

I ask because there's talk among Singaporean financial tech firms
about migrating to more transparent (yay!) blockchain-based
cryptoledgers, but a sticking point for management is how to reliably
recover from theft of private keys.  I understand there exist
real-world practices like cold-storage as well as cryptographic
practices like requiring quorum of n keys and then regenerating a
stolen key from the quorum.  However, I am seeking something more
concrete for how it all fits together.  And I figured that if any
group of people both competent and transparent enough to discuss this,
it's tor-talk.

I am currently under the impression that this is a largely-solved
problem, but often requires domain-specific knowledge/techniques.
Ergo, I ask.  A paragraph or two overview of the gist would be fine.
Whatever you write I will probably polish into something non-h4x0rs
can understand.

Thanks much,
-Virgil
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Recommended private key management and recovery
  - From: Allen

Prev by Author: [tor-talk] simple stats from exit node
Next by Author: [tor-talk] Historically speaking, what was the U.S. navy /military
Previous by thread: Re: [tor-talk] Research - Black Market Archives
Next by thread: Re: [tor-talk] Recommended private key management and recovery
Index(es):
- Author
- Thread