Renewal of revocation certificate required after adding a new identity?

Dr. Peter Voigt pvoigt at uos.de
Mon Oct 13 19:14:57 CEST 2014


On Mon, 13 Oct 2014 18:33:10 +0200
Peter Lebbing <peter at digitalbrains.com> wrote:

> On 13/10/14 18:17, Dr. Peter Voigt wrote:
> > I suppose the revocation certificate being a kind of replacement of
> > my public key. As it is bound to the fingerprint of a key pair it
> > can mark the key pair revoked as a whole. I suppose such a key can
> > never be activated again. This is somewhat opposed to a key pair
> > with all of its identities being revoked. Some or all identities
> > could later be activated again and - moreover - this key pair could
> > later even get new identities not being revoked.
> > 
> > I would greatly appreciate anybody to confirm or correct my rough
> > understanding of the revocation certificate and process.
> 
> I think that's a good way of summing it up.
> 
> Cheers,
> 
> Peter.
> 
> PS: You could nitpick about "bound to the fingerprint", I think it
> should be "bound to the public key itself". But it makes no real
> difference, I'm just being fussy.
> 

Thank you for your confirmation.

Regards,
Peter
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: not available
URL: </pipermail/attachments/20141013/2d3ad27a/attachment.sig>


More information about the Gnupg-users mailing list