On Tue, 30 May 2000, Lutz Donnerhacke wrote:
But certificates of expired keys are still valid.
However, this depends on the reason of certification. I am not sure
whether the codes we already have for this are sufficient to
automatically determine whether the cerificate is still valid.
For example, a revocation may have been issued to express that the
key has been compromised long time in the past and therefore the
signature has never been valid. It is not easy to check this because
it may be a pre-generated revocation or a malicious revocation.
Werner
--
Werner Koch OpenPGP key 621CC013
OpenIT GmbH tel +49 211 239577-0
Birkenstr. 12 email wk(_at_)OpenIT(_dot_)de
D-40233 Duesseldorf http://www.OpenIT.de