On Sep 6, 2013 9:10 PM, "Ted Lemon" <ted(_dot_)lemon(_at_)nominum(_dot_)com>
wrote:
On Sep 6, 2013, at 8:21 PM, Melinda Shore
<melinda(_dot_)shore(_at_)gmail(_dot_)com> wrote:
when you vouch for someone's identity - in an authoritative
trust system - you're also vouching for the authenticity of
their transactions.
This is what I mean by "a high bar." Signing someone's PGP key should
mean "I know this person as X," not "this person is X."
Dilution of trust is a problem with PGP. "I know this person as X" is way
too lax if you want the system to scale.
Scott