That which we call a rose

Peter Lebbing peter at
Mon Apr 3 15:57:07 CEST 2017

On 03/04/17 15:30, Doug Barton wrote:
> We really need to stop referring to this as signing.

I agree. But it might be too late.

I used it as a means of explaining what I meant with "Certify
capability". Next time I'll somehow work into my formulation that this
should be called certification, not signing.

Similar issues:
certificate vs (public) key
ownertrust, trust and validity

I'm inclined to give up on the latter now we have TOFU. Your speech
would become truly idiosyncratic if you were to introduce Validity On
First Use in it...


I use the GNU Privacy Guard (GnuPG) in combination with Enigmail.
You can send me encrypted mail if you want some privacy.
My key is available at <>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20170403/e027fa04/attachment-0001.sig>

More information about the Gnupg-users mailing list