revoked key - was: Re: key-signing for pseudonyms

Jerry Windrel jerry.windrel at
Sun May 23 17:23:07 CEST 2004

----- Original Message ----- 
From: "David Shaw" <dshaw at>
To: <gnupg-users at>
Sent: Sunday, May 23, 2004 12:28 AM
Subject: Re: revoked key - was: Re: key-signing for pseudonyms

> > >This is fixed in the updated OpenPGP draft, and GnuPG will have the
> > >fix as soon as it is standardized.
> >
> > Can you describe the fix?  Would this fix also address the simpler
> > attack I outlined here?
> The fix is fairly simple conceptually.  Just have the signing subkey
> issue a signature on the primary key.  Mallet could not issue such a
> signature.  It does not address the attack you mention.  That attack
> is a social problem, and is thus resistant to technical solution.
> David

Can you explain what exactly the "social problem" is?  What are the signers
doing wrong exactly?

More information about the Gnupg-users mailing list