[148233] in cryptography@c2.net mail archive
Re: [Cryptography] Dark Mail Alliance specs?
daemon@ATHENA.MIT.EDU (Bill Frantz)
Sun Nov 24 02:57:32 2013
X-Original-To: cryptography@metzdowd.com
Date: Sat, 23 Nov 2013 22:56:42 -0800
From: Bill Frantz <frantz@pwpconsult.com>
To: cryptography@metzdowd.com
In-Reply-To: <52909514.20605@iang.org>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On 11/23/13 at 3:44 AM, iang@iang.org (ianG) wrote:
>Yes. This gets into the fallacy of signing -- what is the
>statement being signed? For PGP it is "I met this person,
>maybe." For the CAs, it is "the person had some identity docs, maybe."
The one time I used the web of trust for a PGP key it was for my
own key. (I usually get a fingerprint directly from a person.)
I needed to send some confidential information from work to
home. I didn't have my key fingerprint with me, or my key. I
downloaded my key from a key server. It was signed by Carl
Ellison, who I trusted to not have signed any other "Bill
Frantz" key. I had Carl's business card with his key
fingerprint, so I was able to complete the trust chain. QED.
Cheers - Bill
-----------------------------------------------------------------------
Bill Frantz | Since the IBM Selectric, keyboards have gotten
408-356-8506 | steadily worse. Now we have touchscreen keyboards.
www.pwpconsult.com | Can we make something even worse?
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography