The poster you originally replied to is suggesting this for revoking the attackers keys. Not for rev...

nebezb • today at 1:53 AM • 1 reply • view on HN

The poster you originally replied to is suggesting this for revoking the attackers keys. Not for revocation of their own keys…

securesaml • today at 2:41 AM

there's still some risk of publishing an attacker's key. For example, what if the attacker's key had access to sensitive user data?

➕ show 2 replies

alt Hacker News