keyserver interface for quering for revocation cert?
Werner Koch
wk at gnupg.org
Wed Jul 31 21:46:02 CEST 2002
On Wed, 31 Jul 2002 18:22:18 +0200, Simon Josefsson said:
> Does gpg query keyservers for revocation certs currently? What would
> an interface for doing that look?
No. There is no special handling for revocations on keyservers (yet).
A client should ask for the fingerprint of the primary key and the
server should answer whether a revocation is available. This asnwer
should include a timestamp of the latest revocation and the type of
revocation: Either for a subkey or for the entire key; having a
revocation for user IDS or other packets does not seem too important
for me.
The problem with the fingerprint is that it can't route directly to a
specific server. It might make sense to use the preferred keyserver
subpacket to indicate a keyserver which should be checked for
revocations; however this is not the orginal intention of that
packet.
Salam-Shalom,
Werner
More information about the Gnupg-devel
mailing list