I’m asking for existing tools/systems that let me programmatically say: “here is my public key, BUT if each of these 5 other public keys all send a signed message saying that my public key has been compromised, then you should mark my public key as compromised, and use the new one they provide”. (This is not for a particular task, I’m just curious if any existing auth systems are capable of this)

I call the idea “guardian keys” because it could be friends’ public keys or or just more-securely-stored less-frequently-used keys that you control.

NOTE: I know this would not work for data encryption. Encrypted data is simply gone if a key is lost. But, for proving an identity, like a login, there could be a system like this but I don’t know of any

  • @just_another_person
    link
    66 months ago

    Your public key is public. It’s in the name. There’s no way it can be compromised, because it’s meant to be disseminated publicly.

    Am I missing something?

    • @Tangent5280
      link
      26 months ago

      You’re missing the most obvious thing the OP might have meant.

      I took it to mean the case when the public-private key pair has been compromised. Systems been hacked, someone looked over his shoulder when authorising himself etc etc.

      So OP is just asking what happens if someone steals my private key, and I need to tell the rest of the world my Identity cannot be verified using this key pair anymore.

      • @just_another_person
        link
        06 months ago

        Yeah, but that wasn’t the post. Could have confused on what a public key was. Same question still applies though. If you know your private key was blown, you still need to manually clean up after it.

    • @[email protected]OP
      link
      fedilink
      26 months ago

      Yeah, sorry I incrementally edited the title before posting and accidentally made it make no sense. I meant publicly announce that a private key was compromised

      • @just_another_person
        link
        16 months ago

        Got it. Well, mostly the same situation, in which you would only know if your key was compromised by finding it somewhere.