Development discussion of WireGuard
 help / color / Atom feed
* Wireguard Identity Rotation
@ 2020-06-18  7:00 john walker
  0 siblings, 0 replies; only message in thread
From: john walker @ 2020-06-18  7:00 UTC (permalink / raw)
  To: wireguard

I'm looking for a nice way to rotate keypairs with Wireguard. How much time
do you have to update the initiator and responder with new keypairs before
handshakes fail?

If I understood the whitepaper correctly, sessions aren't immediately invalid
when you change a peers identity. Instead, you have up to 5 minutes to update
both sides, or else the session keys are exhausted. Is this correct?

Thanks,
John

^ permalink raw reply	[flat|nested] only message in thread

only message in thread, back to index

Thread overview: (only message) (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-06-18  7:00 Wireguard Identity Rotation john walker

Development discussion of WireGuard

Archives are clonable: git clone --mirror http://inbox.vuxu.org/wireguard

Example config snippet for mirrors

Newsgroup available over NNTP:
	nntp://inbox.vuxu.org/vuxu.archive.wireguard


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git