(apologies if this is a bit dark but it is a real situation that should be addressed imo)
scenario: an attacker has me in physical custody and is trying to gain access to my vault, which is stored on the the remote server. They are willing to use rubber-hose cryptanalysis. I don’t want to cooperate, but worry that they can force me to change my mind through further interrogation.
To mitigate this, i’d like to be able to set an alternative password for my account that deletes my vault on the server when entered, preventing me from further accessing it. With this feature, i can pretend to cooperate and trigger the self destruct by entering the alternative password. This ensures that i won’t be able to change my mind in the future no matter how they try to coerce me.