[Help-gnutls] Re: OpenPGP certificate verification for TLS connections

Daniel Kahn Gillmor dkg-debian.org at fifthhorseman.net
Wed Apr 18 17:23:33 CEST 2007 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed 2007-04-18 03:17:31 -0400, Ludovic Courtès wrote:

> Rupert Kittinger-Sereinig <rks at mur.at> writes:
>
>> Ludovic Courtès schrieb:
>>>
>>> Rupert Kittinger-Sereinig <rks at mur.at> writes:
>
> [...]
>
>>>> I mean trusted in the sense of the pgp trustdb. Ideally, every user
>>>> should be able to configure how he wants to construct his web of trust.
>>>>
>>>> E.g. for a server application, the admin could choose a handfull of
>>>> "user managers" whose keys he would put in the keyring and assign
>>>> ultimte trust to each one.
>>>>
>>>> Another example: a user of web services could validate the server key
>>>> fingerprint, and locally sign them with his own key.
>>>
>>> Nitpick: As mentioned earlier in this thread, signing an OpenPGP public
>>> key means that "the signer is testifying to his or her belief that this
>>> public key belongs to the user identified by this user ID" [RFC 2440,
>>> Section 10.1].  I think this is not what you want here.
>>>
>>> Thanks,
>>> Ludovic.
>>>
>>
>> Why do you think so? If I verify that the key belongs to a person (e.g
>> by checking the fingerprint) I may well document that for later
>> reference by signing the key.
>
> Just because you know for sure that key XYZ belongs to Mr. Someone
> whom you've met at the pub the day before doesn't mean you grant him
> _authorization_ to use the service you provide.
>
> Instead, you need something that says "key XYZ is authorized to take
> such and such actions".  And this does not depend on whether key XYZ
> actually belongs to Mr. Someone.

Or rather, you need something that says "Mr. Someone is authorized to
take such and such actions, and i will use my existing web of trust to
establish whether this is indeed Mr. Someone."  Don't authorize the
key, authorize the *person*.

          --dkg
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Processed by Mailcrypt 3.5.8+ <http://mailcrypt.sourceforge.net/>

iD8DBQFGJjfKiXTlFKVLY2URAmVQAJ4+fwdkMQjLdq6ir8Yls/Ulz8YhawCeJXm8
wmMno9Oq7cnnuh88kxQ7GcQ=
=mSpL
-----END PGP SIGNATURE-----

More information about the Gnutls-help mailing list