Proposal of OpenPGP Email Validation

Neal H. Walfield neal at walfield.org
Wed Jul 29 14:09:54 CEST 2015


At Wed, 29 Jul 2015 02:30:47 +0100,
MFPA wrote:
> On Monday 27 July 2015 at 1:15:57 PM, in
> <mid:874mkpokxu.wl-neal at walfield.org>, Neal H. Walfield wrote:
> 
> 
> > Regarding the design: personally, I wouldn't have the
> > user follow a link that includes a swiss number, but
> > have the user reply to the mail, include the swiss
> > number and sign it.
> 
> 
> Why not simplify the workflow:-
> 
> 1. key reaches validation server.
> 
> 2. for each UID containing an email address, validation server creates
>    a copy of the key stripped of all other UIDs.
> 
> 3. validation server signs that copy of the key.
> 
> 4. validation server pastes the signed key into an email, encrypts the
>    email to that key, and sends it to the email address in the UID.
> 
> 5. user receives each email, decrypts it, and updates their local copy of
>    their key.
> 
> 6. user uploads key now bearing the validation server's signatures to
>    a keyserver.
> 
> 
> There is still the same level of assurance that the email address and
> private key are controlled by the same entity. Advantages are:-
> 
> a. Nobody is asked to click links or reply to emails.
> 
> b. The validation server does not need to manage a "stack" of keys
>    awaiting feedback from the validation emails.
> 
> c. Changes to the user's key are uploaded to the keyserver by the
>    user, not by the validation server.

Personally, I think c is the killer in this plan: people aren't going
to bother to upload it (assuming they even get that far)!

Neal



More information about the Gnupg-users mailing list