Trusting other keys a message was encrypted to
2014-667rhzu3dc-lists-groups at riseup.net
Fri Nov 6 16:07:02 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
While writing in the "TOFU for GnuPG" thread it occurred to me that
GnuPG does not look at whether we "trust" the other keys to which an
incoming message was encrypted.
GnuPG looks at whether we "trust" keys we are about to encrypt to, and
whether we "trust" keys that signed messages we have received.
Wouldn't it be reasonable to also look at whether we "trust" other
keys that are seen to be a party to the conversation?
Of course, this could only work for keys that were not obscured by the
use of throw-keyids or hidden-recipient or hidden-encrypt-to. And if
another copy were encrypted separately, we know nothing about it.
MFPA <mailto:2014-667rhzu3dc-lists-groups at riseup.net>
Wise men learn many things from their enemies.
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----
More information about the Gnupg-users