key-signing for pseudonyms

Atom 'Smasher' atom-gpg at suspicious.org
Mon May 17 04:17:51 CEST 2004 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> > what if i was personally introduced to you as "atom smasher"? what if i
> > was introduced by someone who we've both personally known for years? what
> > if i was speaking at a conference, and identified as "atom smasher"?
>
> I don't think that would be enough personally for me. I really like to
> tie it into some legal form of identification. That's what my signatures
> mean to me: I have verified that this person is who they say they are, and
> they are in control of the email corresponding to the uid(s) that I
> have signed. Other people's signatures may mean something different.
> I am hard pressed to come up with circumstances where a person I meet
> in person still insists on a pseudonym and has no "real name" uid. If there
> were extenuating circumstances however, I would probably sign it at
> "level 2" with a unique policy url stating why the person has no real
> name and why I signed it anyway. It's really on a case by case basis: I'm
> sure if you gave more specific examples, people could tell you what they
> would do.
=======================

sounds reasonable. anyone else?


> >> * Nor do they get it unless they sign mine as well!
> > ~someone~ has to go first, right?
>
> Not if you are using the Biglumber key exchange service! If you are logged
> in to Biglumber, just hit the link and upload a signed copy of the other
> person's key. When they upload your key signed by them, Biglumber mails
> you both a copy of your signed keys.
==========================

that's pretty cool! i just signed up to biglumber, but i didn't know about
that.


        ...atom

 _________________________________________
 PGP key - http://atom.smasher.org/pgp.txt
 762A 3B98 A3C3 96C9 C6B7 582A B88D 52E4 D9F5 7808
 -------------------------------------------------

	"I am a former Los Angeles Police narcotics detective.
	 I worked South Central Los Angeles. And I can tell
	 you, Director Deutch, emphatically and without
	 equivocation, that the Agency has dealt drugs in this
	 country for a long time."
		-- Mike Ruppert to DCI John Deutch, 15 Nov 1996
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)
Comment: What is this gibberish?  -  http://atom.smasher.org/links/#digital_signatures

iEYEARECAAYFAkCoINMACgkQnCgLvz19QePlkQCgklLjH0fkOqGtLPicDup0akfa
Dp8AnRQUM1+wqHE75MxBV3DMlZz8Okwd
=p3N6
-----END PGP SIGNATURE-----

More information about the Gnupg-users mailing list