[7775] in cryptography@c2.net mail archive
Re: reflecting on PGP, keyservers, and the Web of Trust
daemon@ATHENA.MIT.EDU (Derek Atkins)
Wed Sep 6 12:09:29 2000
To: Ray Dillinger <bear@sonic.net>
Cc: Ted Lemon <mellon@nominum.com>, cryptography@c2.net
From: Derek Atkins <warlord@mit.edu>
Date: 06 Sep 2000 11:51:47 -0400
In-Reply-To: Ray Dillinger's message of "Wed, 6 Sep 2000 07:09:01 -0700 (PDT)"
Message-ID: <sjmya15a57w.fsf@rcn.ihtfp.org>
RFC2440 (OpenPGP) provides for referral revocations -- you can let
other people revoke your key on your behalf.
-derek
Ray Dillinger <bear@sonic.net> writes:
> On Tue, 5 Sep 2000, Ted Lemon wrote:
>
> >
> >If you sign the revocation certificate in the compromised key, then
> >the only way it can get revoked is if the owner of the key revokes it
> >or it's been compromised...
> >
> > _MelloN_
>
>
> This is true, and that's a *sufficient* condition for a revocation.
> I don't know about you though, but my keyring exists in only two
> copies -- the Red Diskette and the Blue Diskette. If someone
> manages to grab both Diskettes, I won't be able to use the key
> to issue a revocation certificate. So I would prefer to work with
> a CA where it is not a *necessary* condition for a revocation.
>
> Bear
>
>
>
>
>
>
--
Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
Member, MIT Student Information Processing Board (SIPB)
URL: http://web.mit.edu/warlord/ PP-ASEL N1NWH
warlord@MIT.EDU PGP key available
