wks for sign-only keys

Erich Eckner gnupg at eckner.net
Fri Jan 11 09:47:18 CET 2019



On 11.01.19 09:40, Werner Koch wrote:
> On Wed,  9 Jan 2019 11:55, gnupg at eckner.net said:
> 
>> it can't with the sign-only key. However, would it be possible to fall
>> back to an unencrypted email for keys which are not suited for
>> encrypting? In the end, the content will still be signed, thus authentic.
> 
> The purpose of the Web Key Directory is to provide an encryption key for
> a given mail address.  It is entirely useless for a signing key because
> a verifying party can't find the key using the Web Key directory because
> the lookup is by the mail address and not by the fingerprint, which is
> provided as part of the signature.
> 
> 
> Shalom-Salam,
> 
>    Werner
> 

oh, I haven't thought of that. Thanks for the explanation /
clarification :-)

regards,
Erich



More information about the Gnupg-devel mailing list