You're forgetting that if I have been storing all of the encrypted traffic all a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		grogenaut on May 10, 2016 \| parent \| context \| favorite \| on: Git-secret – store private data in a Git repo You're forgetting that if I have been storing all of the encrypted traffic all along and then get access to the keys I can unlock all of the history too. Once a secret is out of use it should be purged completely. This is why secrets should be stored on ephemeral storage if at all possible. This is however pretty advance for many people.

daigoba66 on May 10, 2016 [–]

This is solved with perfect forward secrecy: https://en.m.wikipedia.org/wiki/Forward_secrecy

nathancahill on May 10, 2016 | [–]

Great! It's "solved". No need to worry anymore!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact