Y
Hacker News
new
|
ask
|
show
|
jobs
by
FiloSottile
1646 days ago
The difference with hardware keys is that the primary key can’t be exfiltrated, and only one secret can be decrypted per physical touch, so rotation and recovery are possible without invalidating all secrets.