Hi all,
Working through some things like a Will (I am fine, just normal life planning), and debating on methods for digital management when I do die.
I run a lot of self-hosted services for family and friends, all on secured servers with ZFS and on/off site backups. Key ingredient is Vaultwarden for password management.
I’d like to put something in place so that encryption keys, some docs, and key passwords are released to a tech savvy friend. Anyone know of existing solutions for this?
Requirements of:
- Not providing keys to a third-party beforehand
- Not forgeable to open
- If possible, no “weekly press a button”
I’m thinking some kind of key pair where my friend has the private key and the public key is provided to a family member, and when activated a timer starts where I could cancel the release.
I’ve thought about this myself during a phase of less that then perfect health. I think a somewhat practical solution is to have all passwords and documentation on how to use them/access the services that require them in a (online) password manager (so it stays current). Then have an USB stick with encrypted login credentials and OTP backup deposited at a notary and hand out the decryption key to a few trustworthy friends and family members.
This way nobody can access your stuff and the notary can make sure to hand out the USB stick only to the one person you specified in your will. The other friends family members are there as backup in case your “special” friend has lost the decryption key in the meantime.
The alternative to an online pw manager would be a local one that you synchronize to your friends and only the notary has the key to unlock the database, which they only hand out according to your will.
I’d love to hear about other solutions though. Maybe there’s a better option.
P.S.: There are tools to have more redundancy on USB sticks and so on, so that bit flips/degradation can be accommodated. Multiple redundant data carriers are an option as well.
Yea this is a similar idea to what I’m considering. Thanks!