Protocol for rotating key_file
Closed this issue · 0 comments
davidrusu commented
since key_files are stored in plaintext on user devices, a compromised device will leave user exposed to brute force attacks against a users master passphrase.
To mitigate this risk, there should be a protocol for periodic key rotation.