Publicly commit to issuing and verifying keys
We noted in the Lox paper that the Lox Authority should commit to a set of keys for issuing and verifying anonymous credentials and publish this commitment to keys in a public place, such as the Tor consensus, that is visible to all users and can be used to independently verify the correctness of all tokens. Without such a commitment, the LA could use a different key for each new Lox user to track users’ usage of Lox. With Lox integrated into Tor browser, and the Lox authority hosted on a server that we control, we can trust that our lox authority is honest, but some users may appreciate the added assurance.