sq keyserver get should support multiple servers
sq keyserver get
should support multiple keyservers. Queries should be issued in parallel, and the results merged. We should use a timeout, e.g., 2 * max(100ms, first response)
.
Using multiple key ervers increases the security: if an adversary wants to withhold a revocation certificate, they must control all key stores that the victim queries.
Using multiple keyservers increases usability: it is possible to use an organization-internal keyserver, and a public keyserver simultaneously.
Using multiple keyservers inceases robustness: k.o.o is not in a pool and although it didn't go down, the hosting provider was recently subject to a DDoS, which made k.o.o de facto unreachable.