Silk Road forums
Support => Feature requests => Topic started by: Asal88 on March 03, 2013, 12:05 pm
-
Thought of this the other day.
PGP keys are an important part of SR, they can be used both to secure and to sign information.
Therefore I believe it would be a valuable feature if all users (not just sellers) had a place to display their key.
This place would be a simple text box that could be viewed by any other user and importantly it should only be editable via PIN input. This is important as it would provide a further level of security in the case of phishing attacks.
What I mean by this is that, assuming the victim informs the site support immediately of such an attack, they would have the time it takes for the PIN to reset for the site support to check the users key profile and (if necessary) request a signed message to be sent. Thus providing an extra potential form of identification.
Thoughts?
-
I don't think hijacking is that big of a deal, but why not. Why not make it possible to store a secret key specially for messages and addresses to decrypt inside the account (by the server, you could even minimally charge for it if it uses too much horsepower), but it would protect the buyer enormously by making it impossible to implicate him even if the site gets compromised. At least implement it sidewide or don't make it a problem, now the copy and paste routine is too much hassle, and people are giving away something that should only have to go to the buyer.