Hacker News new | past | comments | ask | show | jobs | submit login

Being the only keyholder reduces plausable deniability, so maybe.

The private key is on the shipped devices, from my reading.


I'm hypothesizing that you might do this, even with keys intended to be used as a back door, by shipping it on devices, you vastly increase the number of potential suspects for any backdoor abuse.

Continuing this train of thought - a hardcoded password is classic example of a backdoor, and just as "public" as including a private key.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact