revoking a UID
David Shaw
dshaw at jabberwocky.com
Wed Feb 9 23:53:47 CET 2005
On Wed, Feb 09, 2005 at 05:45:24PM -0500, Jason Markley wrote:
> When one revokes a UID to effectivly change addresses, how does that
> affect the signatures that were on the key?
>
>
> In other words...
>
> 1. Generate a key with uid1.
> 2. Get this key signed by your friends, etc.
> 3. Generate a new uid, uid2.
> 4. revoke the old uid, uid1.
>
> Will your friends that signed your key origionally still see your key as
> valid?
No.
> Will they have to sign the new uid in order to have your key be
> valid again?
Yes.
> What are the security implications of having your friends still see
> your key as valid when you've revoked the uid that they signed?
None, since it doesn't happen ;)
What people generally call "signing a key" is really "signing a
key+uid". If you revoke a uid, then those signatures are no longer
meaningful.
David
More information about the Gnupg-users
mailing list