Managing Subkeys for Professional and Personal UIDs

Faramir faramir.cl at gmail.com
Sat May 3 00:03:04 CEST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

El 28-04-2014 14:35, Daniel Kahn Gillmor escribió:
...
> But I also want to point out that some employers may have a
> legitimate need (even a legal compulsion) to be able to decrypt
> communications coming to your work-related e-mail.  One reasonable
> solution to this is to provide them an escrowed copy of your
> encryption-capable subkey, perhaps locked in a way that you would
> need to be informed (or perhaps deceased?) that they were making
> use of the escrow.
> 
> However, i see *no* legitimate need for any employer to be able to
> forge data signatures or identity certifications from your
> work-related key. escrow only make sense for encryption-capable
> keys in limited contexts.

  What about to adding the boss key to the keys the message is
encrypted to?

  Best Regards

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBCAAGBQJTZBYXAAoJEMV4f6PvczxAQakH/1ogvcGn1Lcdu1UDZ0eZ4a2P
nYyRyn1xHZBm/UDMvMfo2+I4rqjMPpUB/gdiosDGXLLG009MiyHl3hd8IdCKCGcp
qTIYR7H10ImWFDAi/VmkqPpJi9XSe9AfRO2nqMnMVVTuMGbTp4hCqZqgiAnyH8Pc
SSV4iUWj/aykzTuBgfFdS5o6JkANKa9fgXlOI55OtKePTPiKTrALJngXZtJ8OeWT
1fSc8jnKGCYd+mVZFwRJlqHVMhPZigi83BE/HYAde7j8F0Ubnmn6zipTDiiQvy9o
ZLs8lmLpHRJO3t+vtP42VFOnY+Qah5z/iJilL1722ODfxwnpyZZHKdSRfGK0Olo=
=CTVq
-----END PGP SIGNATURE-----



More information about the Gnupg-users mailing list