I am working on an application in which several users will share access to a registry keypair. In this model, users are added by encrypting the registry secret with the user’s key and sharing it with that user. In this model ,adding new users is as simple as sharing a secret, but removing users requires generating a new secret and sharing it with the new trusted user set.
However, I notice in the Skynet docs that a registry secret can be used to derive child keypairs. So what if, instead of sharing the same secret with each party, I derived a child key per user and shared that? What advantages would this confer? If a child key were to be compromised, would there be any way to use the parent key to revoke the child key?