On Mon, 10 Jul 2000, L. Sassaman wrote:
The client takes the public key block, signs it, and submits this signed
blob to the server. The server then verifies the signature, trims away
that signature, and adds the key.
Don't forget that the server needs to accept unsigned requests too and
allow to add key revocations and certicate revocations.
Werner
--
Werner Koch OpenPGP key 621CC013
OpenIT GmbH tel +49 211 239577-0
Birkenstr. 12 email wk(_at_)OpenIT(_dot_)de
D-40233 Duesseldorf http://www.OpenIT.de