German ct magazine postulates death of pgp encryption

Marco Zehe marcozehe-ml at mailbox.org
Sun Mar 1 17:36:20 CET 2015


Hi Kristian,

> Am 01.03.2015 um 16:38 schrieb Kristian Fiskerstrand <kristian.fiskerstrand at sumptuouscapital.com>:
> 
> You wouldn't need the keyservers to be involved in this at all. Anyone
> could set up such a mail verification CA outside of the keyserver network.

In theory, yes. And keybase.io goes in that direction, although they don’t do the verification of e-mail addresses themselves, only the e-mail address one signs up with for the account.

But why should key servers not do that? Why add this extra level of complexity?

Marco

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: </pipermail/attachments/20150301/7bb5d650/attachment-0001.sig>


More information about the Gnupg-users mailing list