|
|
|
|
|
|
by AlotOfReading
1250 days ago
|
|
|
I get what you're saying, but let's not downplay how difficult secret rotation is out the the real world of physical devices. I work on robots. Let's say you want to rotate the very important image signing keys. If you're lucky enough to have hardware that supports multiple keys (not universal), your process might only be as painful as producing doubly-signed images, coordinating global updates, and field servicing an inevitable percentage of the fleet that had weird issues. Worst case, you'd have to find every unit around the world and physically replace the PCBs. I'm personally going to avoid both without some extremely good reasons. |
|
|