making the X.509 infrastructure available for OpenPGP

MFPA 2014-667rhzu3dc-lists-groups at riseup.net
Thu Feb 6 16:41:45 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi


On Thursday 6 February 2014 at 2:26:33 PM, in
<mid:52F39B99.6090906 at sixdemonbag.org>, Robert J. Hansen wrote:


> Don't confuse "OpenPGP doesn't need *external* CAs"
> with "OpenPGP doesn't need CAs." You are your own
> certificate authority in OpenPGP; remove yourself as a
> certificate authority and no certificate will possess
> any validity.

I would say that where an individual makes up their own mind which
certificates to mark as valid, they are not using a CA at all. If a
second individual is asking the first individual which certificates
to accept, the second individual is using the first as a CA.


- --
Best regards

MFPA                    mailto:2014-667rhzu3dc-lists-groups at riseup.net

I hit the CTRL key but I'm still not in control!
-----BEGIN PGP SIGNATURE-----

iPQEAQEKAF4FAlLzrUhXFIAAAAAALgAgaXNzdWVyLWZwckBub3RhdGlvbnMub3Bl
bnBncC5maWZ0aGhvcnNlbWFuLm5ldEJBMjM5QjQ2ODFGMUVGOTUxOEU2QkQ0NjQ0
N0VDQTAzAAoJEKipC46tDG5prroD/0O74IoFF1zWOBWXU7Qp7jSMt2BWs4wfyF2S
OjpPcmALvYiNL5gdQ3k0kS/fgeNwDImxxER6oW74asfpwpnUqOxwFPcz7S49EEJG
1VbHsOeaueH6N03zHOpsDtaClKGxLEJOBFnjLBDjgX3HcoHztBwswTuqt6RUJHw7
kKcBM3r7
=W6nW
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list