At 12:20 AM +0200 7/17/01, Ingo Luetkebohle wrote:
Hi,
has there been discussion of specifing something like X.509 attribute
certificates for PGP? Basically, an attribute certificate is a
certification that some arbitrary association holds for the key
owner. E.g., it could be used to certify membership to some group or
to express other information about the key owner.
Yes. The Standalone Signatures and Notation signature subpackets are
designed precisely to set up the sort of arbitrary associations that you're
looking for. But also, notations can be used other signatures to put in
information like group membership and so on.
Jon