|
|
|
|
|
|
by jpgvm
867 days ago
|
|
|
Yeah I hate that people can't acknowledge that friction is sometimes intentional. Not everything -should- be easy. For example I designed a system at a previous company that used Shamir's Secret Sharing to protect a very very important root key. We used an intermediate of this key for most operations but it came time to rotate it and folks were surprised by the ceremony involved in doing so. i.e the root key was decrypted using X of N members of the SSS group, a new intermediate generated and the special NUC that was designed for this purpose returned to it's safe (which was also using a Yubikey as like a mini-HSM too). Those keys protected very important PII and I deemed this the minimum necessary friction, ideally I would have went further if that was tenable. Some things really should be hard and that hardness should be proportional to how horrible the implications of someone unauthorized doing that thing. |
|
|
the entirety of .nz probably wouldn't agree with you when they had a 2 day outage due to a slight DNSSEC misconfiguration