On Wed, 21 Sep 2005 14:55:03 -0700 David Shaw
<dshaw(_at_)jabberwocky(_dot_)com> wrote:
It
would
(somewhat) allow someone to violate a hard expiration date on
their
key: make the key, get signatures, and then when the key expires,
just
remake the key. Essentially you can buy an extension on your
"hard"
expiration time at the cost of losing all of your signatures.
The thing is, I can't really decide if that is a threat or a
feature...
to the unsuspecting users who thought that an 'expired' key
is *really* expired,
it would be confusing to have someone claim,
"i 'revived' it,
it was dead, but it's better now,
just re-sign it and trust it again ..."
so,
while not really a threat, and not really a feature,
it potentially could add to the confusion of the key trust issue,
rather than simplify it...
vedaal
Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2
Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434
Promote security and make money with the Hushmail Affiliate Program:
http://www.hushmail.com/about-affiliate?l=427