Replying to Avatar Tim Bouma

I am thinking about creating the concept of a “cpub” or child public key of a root npub. The idea is that the cpub can be provably traced back to a npub. I can have as many cpubs as I want, that map back to the same ‘identity’. If a cpub keypair gets compromised, I can publish an event that invalidates that cpub.

As for clients, when they see what is a cpub, they can resolve back to the root npub and present that identity instead.

The driving requirement is to have a protected root npub that corresponds to my identity; it is high-value so I only want to sign with it when absolutely necessary - keeping it on a hardware signer device.

Any comments on this approach?
d5
Queue 2mo ago

Reminds me of SSL certs and PKI. I'm not sure this scales well because the CRL has to be remembered forever and never fail or it creates security problems.

you could once again borrow an idea from PkI: expiration. You could make it so that all children expire (pun intended) so eventually all leaked keys are invalid even if the CRL is lost

Reply to this note

Please Login to reply.

Discussion

No replies yet.