Modernizing Web-of-trust for Organizations

Daniel Kahn Gillmor dkg at
Wed Jan 3 20:21:07 CET 2018

Hi Lou--

On Tue 2018-01-02 23:02:08 -0800, Lou Wynn wrote:
> b. Its employees and business partners do not manually manage their own
> keys and trust relationship, and the administrator centrally manages all
> certificates and trustworthiness for the organization.

backing up a bit here -- what kind of "trustworthiness" are you talking
about in your proposal?  your description includes several uses of the
word "trust", but no clear explanation of what that trust entails.

saying that keys are "trusted" doesn't mean much on its own.  What is a
"trusted" key allowed to do that an "untrusted" key is not allowed to

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <>

More information about the Gnupg-users mailing list