RE: Leak -- Compromised MEMO key successfully protected

You are viewing a single comment's thread from:

RE: Leak -- Compromised MEMO key successfully protected

keys-defender (69)in HiveDevs • 3 years ago

I agree.
Should I change it to “MEMO key leak damage successfully mitigated/reduced” ?
Or what else?

3 years ago in HiveDevs by keys-defender (69)

$0.00

Sort:

Trending

[-]

gtg (75)Wizard 3 years ago (edited)

No, that doesn't make sense.
There's no forward secrecy, once leaked, it's over.
With the active key (where consequences can be much worse as it controls finances) it is ironically much simpler, because first you could tell looking at account history if there were funds movements between leak and the moment key was changed.
In case of memo key you just know that it happened and you can do nothing but just let owner know.
It doesn't protect them, it just inform them (if successful at all) about the fact.

$0.00

1 vote

[-]

keys-defender (69) 3 years ago

I see what you mean now. Their past encrypted messages are leaked forever, that's a good point.

For memo keys I'll change the post title to "Compromised MEMO key detected"
I'll add some text in the post that says something like "review for sensitive info all the encrypted messages that you sent with the compromised memo key. Now they are all public forever.."
And following your thinking, it's probably better to not disclose their full account name in the "monthly" report.

$0.00