[index] [text page] [<<start] [<prev] [next>] [last>>]
Page 21: Time-limited address validity

Page 21

The limit on the minimum lifetime of an address means this can only
provide limited protection. It also means that high-resolution
timestamps are a waste of space -- counting days is enough.

You may want to include a key ID in the signed address to make
verification faster, instead of trying all possible keys. If you
re-key reglarly the key ID is effectively a few bits from the middle
of the timestamp.

Re-keying reduces the range of the timestamp that you need, because
very old addresses that have what looks like a new timestamp because
it wrapped will not verify because their key has gone.
e.g. 16 days of keys.

To support public key signatures and recipient-only verification we
probably have to include a full timestamp of the expiry time. Public
keys might also be harder to change frequently.

Generated by MagicPoint