You need to sign in or sign up before continuing.
sq keyserver get should support multiple servers
sq keyserver get
should support multiple keyservers. Queries should be issued in parallel, and the results merged. We should use a timeout, e.g., 2 * max(100ms, first response)
.
Using multiple key ervers increases the security: if an adversary wants to withhold a revocation certificate, they must control all key stores that the victim queries.
Using multiple keyservers increases usability: it is possible to use an organization-internal keyserver, and a public keyserver simultaneously.
Using multiple keyservers inceases robustness: k.o.o is not in a pool and although it didn't go down, the hosting provider was recently subject to a DDoS, which made k.o.o de facto unreachable.