[OTR-dev] a single secret key for all accounts?

Ximin Luo infinity0 at gmx.com
Fri Nov 1 05:48:53 EDT 2013


On 01/11/13 02:47, Hans-Christoph Steiner wrote:
> 
> Is there a particular reason why OTR apps generally create a new secret key
> for each account rather than generating a single key and using it for all
> accounts?  Our keysync app[1] is basically is a band-aid to ameliorate the
> proliferation of OTR keys, so I'm curious what issues we should be thinking
> about as we progress.  I've been thinking that the next step is that keysync
> should pick a single secret key and use it everywhere with the goal of making
> it more likely that both sides are using verified keys.
> 
> [1] https://guardianproject.info/apps/keysync/
> 
> .hc
> 

If two accounts use the same key, it's clear they are the same person. Can you
think of a situation where this might not be desirable?

X

-- 
GPG: 4096R/1318EFAC5FBBDBCE
git://github.com/infinity0/pubkeys.git

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 897 bytes
Desc: OpenPGP digital signature
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20131101/2b76dfef/attachment.pgp>


More information about the OTR-dev mailing list