PhD project ideas
Andrew Gallagher
andrewg at andrewg.com
Mon Jun 11 11:06:27 CEST 2018
On 09/06/18 13:51, Dashamir Hoxha wrote:
> If user information is removed from the keys, then keyservers become
> almost useless, as far as I am concerned.
They become useless for the purposes of searching by user ID. But the
association of a user ID to a given key is only the first step in the
process. Once that is done, all sorts of other things happen in the
background based on fingerprints, and which the ordinary user will
rarely see because they are automated.
For example, keyservers are vital for propagating revocations. If my key
is stolen, and I revoke it, the best place to publish that revocation is
on the keyservers. They are the most widely supported directory and it
is not only possible but recommended that PGP clients refresh their
keyrings from the keyservers on a schedule. Removing user IDs would not
affect this process.
--
Andrew Gallagher
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 862 bytes
Desc: OpenPGP digital signature
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20180611/e5522002/attachment.sig>
More information about the Gnupg-devel
mailing list