Rotation
Two kinds: share-set re-share (custodians swap shares, public key stays) and full rotation (new keypair, new cert, new pubkey on chain).
Re-share schedule
Re-share cadence
Periodic share refresh — defends against incremental compromise of custodians. Public key doesn’t change. No cert re-issue. Invisible to your users.
Custodian replacement on degrade
If a custodian falls below uptime threshold, swap them out and re-share to a new node within the diversity caps.
Next re-share
Auto-runs in the background. You’ll see the new share set and a receipt — nothing else changes.
Full rotation policy
Trigger full rotation
New keypair, new public key. Cert auto-reissues via ACME with the new key. Edges seamlessly swap. Sensitive op — 2-of-3 + 7d veto.
Auto-rotate cadence
Many compliance regimes require periodic full rotation. The Grid issues fresh certs each rotation; you don’t need to do anything.
Last full rotation
Public key fingerprint and on-chain block.
Rotation history
| WHEN | KIND | OLD FINGERPRINT | NEW FINGERPRINT | CUSTODIANS | RECEIPT |
|---|---|---|---|---|---|
| 12d ago | re-share | 04:8a:f2:…:bc:71 | 04:8a:f2:…:bc:71 | 21 ↔ 21 (3 swapped) | rcpt:re-1aef |
| 42d ago | re-share | 04:8a:f2:…:bc:71 | 04:8a:f2:…:bc:71 | 21 ↔ 21 (1 swapped) | rcpt:re-9b21 |
| 72d ago | re-share | 04:8a:f2:…:bc:71 | 04:8a:f2:…:bc:71 | 21 ↔ 21 (2 swapped) | rcpt:re-44ee |
| 14mo ago | DKG genesis | — | 04:8a:f2:…:bc:71 | 21 selected via VRF | rcpt:dkg-0001 |