ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey

2015-09-23 18:28:58
from [Dave Crocker] [Permanent Link] 
On 9/23/2015 3:00 PM, Sam Hartman wrote:

Yeah, but  I believe for most users the only reasonable default for
things you get from the key servers is don't trust without additional
evidence.



I'm confused by this thread.

I thought that the /essence/ of the PGP model was that the key servers
were merely convenient locations but /not/ 'trusted' locations.  That
is, all the validation and trust are based on object-related data and
not location-related.

d/

-- 
Dave Crocker
Brandenburg InternetWorking
bbiw.net
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey, Simon Josefsson
Next by Date:  Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey, Sam Hartman
Previous by Thread:  Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey, Sam Hartman
Next by Thread:  Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey, Sam Hartman
Indexes:  [Date] [Thread] [Top] [All Lists]