As an alternate design, could I escrow decryption keys with one or more trusted third party services, and rely on that service to destroy those keys over time?
Yes, you could do this. The question is whether you would like to trust such third party storage services. The situation with Hushmail—an email encryption company that was giving cleartext copies of encrypted messages to the government—is an example of such a trusted service that apparently violated users’ expectation of privacy. Given the situation with Hushmail, users would likely not trust such managed escrow services. Vanish avoids these concerns via its method for leveraging global scale, decentralized, peer-to-peer networks. Specifically, our Vanish prototype leverages portions of the popular Vuze Bittorrent network. See below for details.
Related Questions
- As an alternate design, could I escrow decryption keys with one or more trusted third party services, and rely on that service to destroy those keys over time?
- How will the design of the NBN Co satellite service differ from existing satellite services?
- What services are offered by the Florida Keys Service Center?
