[jgilpin]

So as of this moment, you can't keep the keys yourself. Our technology absolutely allows for self-hosted keys. We do have private key managers being developed, which we intend to open source, and be for private use. It will be an option for the those that want the responsibility of keeping the keys safe, and also address your concern.

[conorgil145]

Also, our privacy policy contains details on how we handle user data: https://www.virtru.com/privacy-policy

And we have a blog post discussing some frequently asked questions on government surveillance: https://blog.virtru.com/faq-on-government-surveillance/

[mnrasul]

about blog: yeah, I agree you need to obey the laws and everything, but does the law state that you need to store the keys?

Until the law does, keeping all the keys in one place is an invitation for the bear to get the honey. If all the honey was in separate honeycombs, the bear might still get them all, but would probably have a tad bit more work to do.

Atleast hypothetically :).

[DHowitzer]

That is one reason why the underlying tech we're using, particularly the TDF, is designed to allow you to use any key server you want. Our hope is that we're the first of many TDF key servers out there, and are working to open source a key server under Apache license so anyone can use and contribute. If you're interested in helping make that possible or know people who might be, let us know.

[mnrasul]

great. Thanks. Will signup when it becomes available :)

[jgilpin]

Out of curiosity, on which platform would you want to run the self-hosted server?