Managing Signing Keys
This page explains how to manage keys used for signing and verifying MDS files.
Overview
MDS files saved in MIDAS are digitally signed. Digital signatures enable verification of the file creator and detection of tampering.
Whether to trust an MDS file depends on the signer's trust level. There are three trust levels:
| Trust Level | Description |
|---|---|
| Official | Signed by MIDAS operator's key |
| Trusted | Signed by your own key (self-signed) or a registered public key |
| Unknown | Signed by an unregistered signer |
Key pairs are stored in the browser's IndexedDB. Signing keys are managed in the Signing Keys tab of the Settings dialog. Select Help > Settings from the menu bar, then click the Signing Keys tab.
Managing Your Key Pair
Generate a New Key
When you export an MDS file for the first time, a key pair is automatically generated (the signer name defaults to "Anonymous"). To generate manually, click the Generate New Key button in the Signing Keys tab.
Enter a signer name in the dialog. This name is included in the signature and displayed when other users open the file.
Export Your Public Key
To share your public key with other users, click the Export Public Key button. A JSON file will be downloaded.
By giving this file to people you want to share MDS files with, they can verify that you are indeed the author of the MDS files when they open them.
Back Up Your Key Pair
To migrate your key pair to another browser or device, create a backup.
- Click the Backup Key Pair button
- Enter a password (required for restoration)
- Re-enter the password to confirm
- Click the Export button
The backup file is encrypted with the password. Store it in a safe place, as you cannot restore it if you forget the password.
Restore from Backup
To restore a key pair from backup, click the Import Key Pair button.
- Select the backup file (
.json) - Enter the password set during backup
- Click the Import button
If an existing key pair exists, it will be overwritten.
Change Signer Name
Click the edit icon next to the name in the My Signing Key section to change the signer name.
Delete Key Pair
Click the Delete Key button to delete the key pair. This cannot be undone. If you generate a new key after deletion, it will have a different fingerprint from the previous signature.
Registering Others' Public Keys
By registering a public key received from another user, you can treat that user's signatures as trusted.
Import a Public Key
- Click the Import Public Key button in the Trusted Keys section
- Select the public key file (
.json) - Verify the fingerprint
- Enter a name for identification
- Click the Register button
The fingerprint is a unique identifier calculated from the public key. When receiving a public key, we recommend verifying the fingerprint through a separate channel (email, chat, etc.).
Edit Registered Key Name
Click a key in the Registered keys list to view details. Click the Edit button to change the name.
Delete Registered Key
Click the Remove button in the Registered keys list to unregister. After removal, signatures from that key will be treated as Unknown.
About Official Keys
The Official section in Trusted Keys displays the MIDAS operator's keys. Signatures from official keys are always treated as trusted.
Official keys cannot be edited or deleted.
Opening MDS from Unknown Signers
When you open an MDS file signed with an unregistered key, a warning dialog appears.
Recommended: Before receiving MDS files, ask the sender for their public key and register it as trusted.
The dialog displays the signer's name and fingerprint.
- Cancel: Close the dialog without opening the file
- Open Anyway: Open the file after acknowledging the warning
Note: The signer's name is self-declared. To verify if it's really their key, you need to contact them directly. When receiving MDS files for the first time, we recommend asking for the public key as well.
When Signature Verification Fails
If the MDS file has been tampered with or the signature data is corrupted, the file cannot be opened. An error message will be displayed.
See also
- Project Management - Overview of project management features