diff options
author | Christian Grothoff <christian@grothoff.org> | 2019-10-08 16:45:05 +0200 |
---|---|---|
committer | Christian Grothoff <christian@grothoff.org> | 2019-10-08 16:45:05 +0200 |
commit | c14655becafc49bcdd8c5480eee29dc62bca436f (patch) | |
tree | 5d9b4d5dd670c60ca88cf872533d2bd4f321f83e /anastasis.rst | |
parent | 6ef88cd748cca675c1acfcd3813cc7e6836385e9 (diff) | |
download | docs-c14655becafc49bcdd8c5480eee29dc62bca436f.tar.gz docs-c14655becafc49bcdd8c5480eee29dc62bca436f.tar.bz2 docs-c14655becafc49bcdd8c5480eee29dc62bca436f.zip |
formatting
Diffstat (limited to 'anastasis.rst')
-rw-r--r-- | anastasis.rst | 11 |
1 files changed, 5 insertions, 6 deletions
diff --git a/anastasis.rst b/anastasis.rst index 35e3d72b..352fb060 100644 --- a/anastasis.rst +++ b/anastasis.rst @@ -21,15 +21,14 @@ Anastasis ========= -**Anastasis** is a service that allows the user to securely deposit a **core - secret** with an open set of escrow providers and recover it if the secret is +Anastasis is a service that allows the user to securely deposit a +**core secret** with an open set of escrow providers and recover it if the secret is lost. The **core secret** itself is protected from the escrow providers by encrypting it with a **master key**. The main objective of Anastasis is to ensure that the user can reliably recover the **core secret**, while making -this difficult for everyone else. Furthermore, it is assumed that the user -is unable to reliably remember any secret with sufficiently high entropy, so -we cannot simply encrypt using some other key material in posession of the -user. +this difficult for everyone else. Furthermore, it is assumed that the user is +unable to reliably remember any secret with sufficiently high entropy, so we +cannot simply encrypt using some other key material in posession of the user. To uniquely identify users, an "unforgettable" **identifier** is used. This identifier should be difficult to guess for anybody but the user. However, the |