Hi ilf--
thanks for the review and the comments!
On Fri 2019-04-12 22:13:00 +0200, ilf wrote:
I fixed some minor spelling, grammar and formatting - please excuse the
amount of pull requests.
I've only seen a few merge requests, and none of them from "ilf" -- if
you're into the gitlab-style workflow, please make merge requests over
here:
https://gitlab.com/dkg/draft-openpgp-abuse-resistant-keystore
Thanks to the folks who have made these requests, though, they're
helping make the document better!
I wonder about the definition of "certificate discovery" here. Even
without UIDs, these keystores could be used for the *retrieval* of
specific certificates whose fingerprint (or key ID) is known. This can
be the case for signatures (over mails, software or documents) or
keylists like in https://tools.ietf.org/html/draft-mccain-keylist
I agree, but this distinction is what the document already tries to make
between certificate *discovery* (lookup by UID or UID substring) and
certificate *update* (lookup by primary key fingerprint).
If that distinction wasn't clear in the reading, i'd welcome text that
improves the clarity. thanks for pointing it out!
--dkg
signature.asc
Description: PGP signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp