Re: Back-signatures, part II


At 03:20 PM 10/30/2003 -0500, David Shaw wrote:

On Thu, Oct 30, 2003 at 10:37:18AM -0800, Trevor Perrin wrote:

> In my scenario, a bunch of different primary key holders trust a
> single subkey holder to perform signatures on their behalf.  The
> subkey holder wants to make sure that each signature is attributed
> to the proper primary key.

I'm having trouble seeing the lack of this ability as a problem, much
less a problem that needs a fix.

It's always possible to come up with a (perhaps convoluted) situation
where any feature would be useful, and with all due respect, I think
this scenario crosses the convolution line.

Fair enough. The more useful scenario I was thinking of is where a singleprimary key is held by a server, which issues short-lived subkeys todifferent users, so they don't have to bother keeping a primary key secure.

But in that case, I think the "Signer's User ID" subpacket is sufficient todifferentiate things.

Trevor

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Back-signatures, part II, (continued) Re: Back-signatures, part II, Trevor Perrin Re: Back-signatures, part II, David Shaw Re: Back-signatures, part II, Trevor Perrin Re: Back-signatures, part II, David Shaw Re: Back-signatures, part II, Trevor Perrin Re: Back-signatures, part II, David Shaw Re: Back-signatures, part II, Trevor Perrin Re: Back-signatures, part II, Adrian von Bidder Re: Back-signatures, part II, Trevor Perrin Re: Back-signatures, part II, David Shaw Re: Back-signatures, part II, Trevor Perrin <= Re: Back-signatures, part II, Michael Young Re: Back-signatures, part II, Trevor Perrin

Previous by Date:	Re: Back-signatures, part II, David Shaw
Next by Date:	Re: Back-signatures, part II, Michael Young
Previous by Thread:	Re: Back-signatures, part II, David Shaw
Next by Thread:	Re: Back-signatures, part II, Michael Young
Indexes:	[Date] [Thread] [Top] [All Lists]