> > I must be out of touch - since when did > > PGP key signing require a photo id? > > It's rather efficient if you want to sign a large number of keys of > people you mostly do not know personally.
Assuming, of course, that the ID is of a sort for which you have an "is-a-forgery" oracle. Has anyone ever weighted a PGP key's certification value as a function of how many keys it's know to have certified? --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]