Re: reflecting on PGP, keyservers, and the Web of Trust

Derek Atkins Wed, 06 Sep 2000 08:59:14 -0700

RFC2440 (OpenPGP) provides for referral revocations -- you can let
other people revoke your key on your behalf.

-derek

Ray Dillinger <[EMAIL PROTECTED]> writes:

> On Tue, 5 Sep 2000, Ted Lemon wrote:
> 
> >
> >If you sign the revocation certificate in the compromised key, then
> >the only way it can get revoked is if the owner of the key revokes it
> >or it's been compromised...
> >
> >                            _MelloN_
> 
> 
> This is true, and that's a *sufficient* condition for a revocation. 
> I don't know about you though, but my keyring exists in only two 
> copies -- the Red Diskette and the Blue Diskette.  If someone 
> manages to grab both Diskettes, I won't be able to use the key 
> to issue a revocation certificate. So I would prefer to work with 
> a CA where it is not a *necessary* condition for a revocation. 
> 
>                               Bear
> 
> 
> 
> 
> 
> 

-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/      PP-ASEL      N1NWH
       [EMAIL PROTECTED]                        PGP key available

Re: reflecting on PGP, keyservers, and the Web of Trust

Reply via email to