>> Is the offline master key limited to ed25519 keys and useless >> > while using ed25519 + RSA keys at the same time? (because the RSA >> > key is not offline?) >> > > Hmmm. Probably yes. Until transition (until we remove permanently RSA > identities) only the ed25519 key will be protected, RSA key will have > to be online. Even in this case, directory authorities remember relays > by their ed25519 + RSA pair of identities. If just one of them > changes, that relay will be rejected.
Ok, so I guess the only reason to use offline master keys now is to not have to start from scratch once RSA keys are deprecated for real. thanks for your answers!
signature.asc
Description: OpenPGP digital signature
_______________________________________________ tor-dev mailing list tor-dev@lists.torproject.org https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev