distributing pubkeys: autocrypt, hagrid, WKD (Re: Your Thoughts)

Bernhard Reiter bernhard at intevation.de
Mon Jul 1 12:18:29 CEST 2019

Am Montag 01 Juli 2019 01:36:41 schrieb Robert J. Hansen:
> Now we've got Autocrypt, WKD, and Hagrid: of these Autocrypt is probably the
> most mature and the easiest for email users.

The problem with autocrypt are the cases where its security measures are 
tested. There is not good way to interact with the users in those cases.
I know this is not parts of its design goals, but it works against a better
user experience.

The progrem with hagrid (from what I've heard) is that it is again an attempt 
of a validating keyserver, which means it has to centralize the trust 
function or there is no point in the validation.

This makes WKD most mature and easiest for users in my eyes. (I was involved 
in its design.).


www.intevation.de/~bernhard   +49 541 33 508 3-3
Intevation GmbH, Osnabrück, DE; Amtsgericht Osnabrück, HRB 18998
Geschäftsführer Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20190701/aeaa610d/attachment.sig>

More information about the Gnupg-users mailing list