Compromising keys of CMs is one of the easiest ways to attack the DAO, and currently there is no easy way for a CM to use offline key management, because the same keys are used for all sorts of activies, like forum, proposal discussion, election activity, etc.
Proposal
Allow having separate keys specified with the candidacy, which are used for voting, not the normal controller keys of the CM.
Background
Compromising keys of CMs is one of the easiest ways to attack the DAO, and currently there is no easy way for a CM to use offline key management, because the same keys are used for all sorts of activies, like forum, proposal discussion, election activity, etc.
Proposal
Allow having separate keys specified with the candidacy, which are used for voting, not the normal controller keys of the CM.