Best practice for periodic key change?
MFPA
expires2011 at ymail.com
Sat May 7 23:07:33 CEST 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Hi
On Saturday 7 May 2011 at 9:52:51 PM, in
<mid:BANLkTi=nwTMCChQ96OLpKHdMOVunSOqZgA at mail.gmail.com>, Jerome Baum
wrote:
> I don't think you get what kind of assumption we are
> talking about. There are two kinds:
> 1. I assume something is generally true, e.g.: I assume
> the world is around.
> 2. I assume something is true within this scope, so I
> don't have to restate the precondition with every
> statement I make, e.g.: "assuming y < z, and z < x, we
> can follow that y < x". It isn't really an argument to
> say "you can't assume y < z, so the point is invalid".
I agree that in this specific instance we can assume y < z. I do not
agree that in general we can assume that an individual with expiry
dates on their subkeys keeps their master key securely offline.
- --
Best regards
MFPA mailto:expires2011 at ymail.com
Don't ask me, I'm making this up as I go!
-----BEGIN PGP SIGNATURE-----
iQE7BAEBCgClBQJNxbSdnhSAAAAAAEAAVXNpZ25pbmdfa2V5X0lEIHNpZ25pbmdf
a2V5X0ZpbmdlcnByaW50IEAgIE1hc3Rlcl9rZXlfRmluZ2VycHJpbnQgQThBOTBC
OEVBRDBDNkU2OSBCQTIzOUI0NjgxRjFFRjk1MThFNkJENDY0NDdFQ0EwMyBAIEJB
MjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0N0VDQTAzAAoJEKipC46tDG5pkxAD/Aoq
p02FGwAMlU0hQX1GZPUeIhG1SOuCwWvj0OHJQNiJFJUE4hu6v8jlSoEpL6/YUk8N
e2LTlTvjDwvf7KXPf5RDUtfC0EEQqo3CZYejAMDMerKS+9ni5b5oycerkoUHJ1Wu
fpQLLB8wo6zp0MG8Ur8Thf+o5FlvohLoXP+zlTQx
=BQFt
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list