Apropos of nothing, what would be gained?
Conversation
This Tweet was deleted by the Tweet author. Learn more
So are we saying that we would like the authenticity of OLD email to be completely disavowed?
This would then seem to provide the same protection to historical senders as per OTR Messaging, is that an advantage?
1
2
There’s no reason for anyone to be able to say “yes this three year old message was definitely signed by Google”.
2
1
3
But you can't prevent that. Someone will log old keys.
1
Logging old public keys is inevitable. But when new collections of archived stolen emails are leaked on the Internet, they become deniable if the secret keys are published.
1
6
Ah, excellent! I never thought of intentionally burning your secret keys as a non-repudiation mitigation! I love it.
1
4
Old keys need to be published preemptively though. If it's only after a leak, leaker could use a notary service long before they publicly leak.
1
3
Could regularly rotate DKIM keys and then publish old keys a couple weeks after they're removed from the DNS records. It still leaves a period of time where DKIM can be used as proof that the email was sent though. Within that window, they can use something like OpenTimestamps.
It’s definitely not ideal. But it’s the difference between capturing someone’s email in real time and getting access to their archived mailbox. In the real world the latter scenario seems much more common.
5