Best practice for periodic key change?
expires2011 at ymail.com
Sat May 7 23:07:33 CEST 2011
-----BEGIN PGP SIGNED MESSAGE-----
On Saturday 7 May 2011 at 9:52:51 PM, in
<mid:BANLkTi=nwTMCChQ96OLpKHdMOVunSOqZgA at mail.gmail.com>, Jerome Baum
> I don't think you get what kind of assumption we are
> talking about. There are two kinds:
> 1. I assume something is generally true, e.g.: I assume
> the world is around.
> 2. I assume something is true within this scope, so I
> don't have to restate the precondition with every
> statement I make, e.g.: "assuming y < z, and z < x, we
> can follow that y < x". It isn't really an argument to
> say "you can't assume y < z, so the point is invalid".
I agree that in this specific instance we can assume y < z. I do not
agree that in general we can assume that an individual with expiry
dates on their subkeys keeps their master key securely offline.
MFPA mailto:expires2011 at ymail.com
Don't ask me, I'm making this up as I go!
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users