making the X.509 infrastructure available for OpenPGP
2014-667rhzu3dc-lists-groups at riseup.net
Thu Feb 6 16:41:45 CET 2014
-----BEGIN PGP SIGNED MESSAGE-----
On Thursday 6 February 2014 at 2:26:33 PM, in
<mid:52F39B99.6090906 at sixdemonbag.org>, Robert J. Hansen wrote:
> Don't confuse "OpenPGP doesn't need *external* CAs"
> with "OpenPGP doesn't need CAs." You are your own
> certificate authority in OpenPGP; remove yourself as a
> certificate authority and no certificate will possess
> any validity.
I would say that where an individual makes up their own mind which
certificates to mark as valid, they are not using a CA at all. If a
second individual is asking the first individual which certificates
to accept, the second individual is using the first as a CA.
MFPA mailto:2014-667rhzu3dc-lists-groups at riseup.net
I hit the CTRL key but I'm still not in control!
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users