[Top] [All Lists]

Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey

2015-09-23 19:14:24
I think John is also arguing that he'd like to change the key servers to
have some location-based trust.

If people thought it were useful, it'd be something to add, and it needn't be complicated. For example, a keyserver could send signed probe messages with confirmation URLs to all of the addresses associated with the key, and add a signature that says "addresses all responded". For that matter, if a domain wanted to sign its users's keys with postmaster@domain, why not.

John Levine, johnl(_at_)taugh(_dot_)com, Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail.

<Prev in Thread] Current Thread [Next in Thread>