diff options
author | http://joey.kitenet.net/ <joey@web> | 2011-04-05 18:41:49 +0000 |
---|---|---|
committer | admin <admin@branchable.com> | 2011-04-05 18:41:49 +0000 |
commit | 08a23997dd5068218e7fd05bfb23cf52dd6299b0 (patch) | |
tree | a7cfb550e5da6830474ff7567d163e0df2a8fa9e /doc/design | |
parent | 683ad73e7da14ac61888e17bcb6db4c83956fce8 (diff) |
Added a comment
Diffstat (limited to 'doc/design')
-rw-r--r-- | doc/design/encryption/comment_2_a610b3d056a059899178859a3a821ea5._comment | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/design/encryption/comment_2_a610b3d056a059899178859a3a821ea5._comment b/doc/design/encryption/comment_2_a610b3d056a059899178859a3a821ea5._comment new file mode 100644 index 000000000..d5461e23c --- /dev/null +++ b/doc/design/encryption/comment_2_a610b3d056a059899178859a3a821ea5._comment @@ -0,0 +1,10 @@ +[[!comment format=mdwn + username="http://joey.kitenet.net/" + nickname="joey" + subject="comment 2" + date="2011-04-05T18:41:49Z" + content=""" +I see no use case for verifying encrypted object files w/o access to the encryption key. And possible use cases for not allowing anyone to verify your data. + +If there are to be multiple encryption keys usable within a single encrypted remote, than they would need to be given some kind of name (a since symmetric key is used, there is no pubkey to provide a name), and the name encoded in the files stored in the remote. While certainly doable I'm not sold that adding a layer of indirection is worthwhile. It only seems it would be worthwhile if setting up a new encrypted remote was expensive to do. Perhaps that could be the case for some type of remote other than S3 buckets. +"""]] |