That's why key revocation, like credit card blocking, should be a separate servi... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		orthoxerox 7 months ago \| parent \| context \| favorite \| on: I scanned all of GitHub's "oops commits" for leake... That's why key revocation, like credit card blocking, should be a separate service that is available 24x7. Like, if you know the value of an AWS token, this should be sufficient data for you to call an AWS API that revokes it.

badmintonbaseba 7 months ago [–]

That doesn't help if revocation, without renewal means immediate outage.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact