Chapter Five: Managing Your Keys

The XID is your identity online; if you lose your XID, the identity is gone. That means that it's very important to protect your XID, and that means protecting the keys that control your XID.

This chapter addresses that problem by demonstrating how to create a less vulnerable copy of your XID with less powerful keys and then how to properly archive your more most powerful keys. It also more generally discusses how to manage keys in your XID through additions, removals, and updates.

Major Objectives for this Chapter

After working through this chapter, a developer will be able to:

• Create a less vulnerable XID.
• Safely archive their master XID.
• Backup keys with Shamir's Secret Sharing.
• Rotate keys if required by a compromise.

Supporting objectives include the ability to:

• Understand key permissions.
• Know the important of backups.
• Recognize the dangers of a key compromise.

Table of Contents

• Section One: Generating Operational Keys
• Section Two: Updating Keys
• Section Three: Backing Up Your Inception Key
• Section Four: Backing Up Your SSH Key
• Section Five: Responding to Key Compromise