Act on the reviews of our revocation certificate mechanism
We received the reviews by email on firstname.lastname@example.org (<email@example.com> and <firstname.lastname@example.org>).
- Consider splitting a designated revocation key instead of a
revocation certificate. The benefit would be to have an expiry date
on the key, which is not the case with a certificate.
- Regularly check with the people in the scheme to make sure that the communication channel with them is still working and that they still have the instructions and their share.
- Update “until we publish a new signing key” in the document as it won’t be enough to build again trust within our user base (cf. other possible fake keys on the public key servers).
Parent Task: tails/private#7700
To upload designs, you'll need to enable LFS. More information