Building a Transparent Keyserver
11 hours ago
- #transparency
- #security
- #cryptography
- Building a transparent keyserver for age public keys using transparency log technology.
- Using Tessera and Torchwood to integrate transparency in less than 500 lines of code.
- Implementing Verifiable Random Functions (VRFs) to protect user privacy by hiding email addresses in the log.
- Adding anti-poisoning measures to prevent malicious entries in the log.
- Incorporating witness cosigning to ensure non-equivocation and prevent split-view attacks.
- Deploying the final transparent, privacy-preserving keyserver at keyserver.geomys.org.
- Future work includes efficient monitoring and revocation using Verifiable Indexes.