Skip to content

Are SigningKeyPairs meant to be ephemeral inside of dryoc? #67

Answered by brndnmtthws
juliusl asked this question in Q&A
Discussion options

You must be logged in to vote

There are a few ways to use it, but generally speaking if you want to be able to authenticate messages over long periods of time (i.e., you want to be able to verify authenticity between two clients/actors over some extended period) then you'd need to store the secret key somewhere, such as in a database. The public keys need to be exchanged between parties to perform the authentication.

If you lose (or discard) the secret key, it just means that you won't be able to sign any new messages with that secret key, but you can still verify any messages that were previously signed with that key so long as you still have the public key.

Like you already mentioned, one way to use the signing keyp…

Replies: 1 comment 3 replies

Comment options

You must be logged in to vote
3 replies
@juliusl
Comment options

juliusl Aug 20, 2024
Author Sponsor

@brndnmtthws
Comment options

@juliusl
Comment options

juliusl Aug 21, 2024
Author Sponsor

Answer selected by juliusl
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
2 participants