key question

[Paul Richard Ramer]

Hello MFPA,

I will summarize the "rights" and restrictions that I believe you say
that an OpenPGP user has with another's public key.  I will call this
the rules of "Key Rights Management" or KRM for short.

Rights of the Key Originator
----------------------------
* Can restrict the uploading of the key to a public venue, especially
public keyservers.
* Can restrict how and where a key is uploaded, if uploading is permitted.
* Can restrict the sharing of the key with someone other than the
originator.
* Can control the Original Signature Content of the key. [1]

Privileges of the Key Holder
----------------------------
* Free to use the key when communicating with the originator.
* May keep multiple copies of the key so long as the key holder takes
steps to protect the key from unauthorized copying and distribution.
* None more.  You should be glad the originator was lenient enough to
allow you to have the first two.

[1] Original Signature Content is the signatures that are attached, at
the will of the originator, to the key.  By default no one may add
signatures to this Original Signature Content without the owner's
permission.

-Paul

--
PGP Key ID: 0x3DB6D884
PGP Fingerprint: EBA7 88B3 6D98 2D4A E045  A9F7 C7C6 6ADF 3DB6 D884

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 665 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20100307/36ae6cc0/attachment.pgp>