Score:2

Secret key expiration

in flag

I am looking for suitable techniques through which secret keys can be expired after a certain time limit. Is there any such method in cryptography?

Score:3
in flag

Private keys do not have an expiration date. They are expired by destroying them.

Certificates have expiration dates, and the public key inside certificates - and therefore the certificate itself - relates 1:1 with the private key. A PGP "public key" contains a lot of meta-information and is more like a certificate than a public key, despite their name. Certificates have an expiration date, after which the certificate / public key is generally not used to verify the signature anymore.

Expiration is generally not part of the cryptographic algorithms; it's more of a responsibility of the system / implementation than cryptography itself.


Note that I always call asymmetric key pairs as private / public key pairs as the private keys are not shared. Symmetric keys just need to remain secret between the parties that use them. Secret keys may be private as well, if they are not shared at all. Some books confuse the notion of private vs secret, possibly because both public and private keys both have "pk" as acronym.

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.