David Leon Gil <coruus(_at_)gmail(_dot_)com> writes:
Sorry, I wasn't entirely clear; for this case a certification signature would
be nonsensical. But a direct key signature would. Perhaps:
> A key capable of making signatures SHOULD be accompanied by either a
certification signature or a signature directly on the key. An implementation
MUST allow importing a key accompanied either by a certification signature or
a signature on itself. It MAY accept public keys without an
accompanying signature.
And then a must accept for encryption-only primary keys sans signature.
Okay, I think I get the gist of this and I'll incorporate it into my
draft, which I plan to submit (hopefully) tomorrow. Please read the
draft once it's posted and make sure I got it right?
Thanks for your feedback.
-derek
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL-IA N1NWH
warlord(_at_)MIT(_dot_)EDU PGP key available
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp