Hi, > Given that there are over 500,000 ways to spell my single > unexceptional gmail address, which doesn't even have anything like > +foo extensions, I would think that the scaling issues would be > obvious. Indeed - at least if you want to use all those variants for encrypted mail. But usually people don't make up which variant of your gmail address to use. You decide that by publishing it or mailing from it.
And that's also how PGP works, that is what I tried to explain in my possibly too long mail. You decide which of your addresses to add as User ID to your public key. And those are the addresses people should use to send you encrypted mail. Therefore I see no need for the openpgpkey specification to deal with address variations. That does not prevent anybody from inventing a webfinger standard to canonicalize email addresses, which could be an additional, usefull service. But from a PGP key lookup mechanism I expect to get keys which have the email I am searching for as User ID. So if you really want to use 500.000 variations of your address, it's PGP that has the scaling problem. Try to sign such a key ;) Greetings, Florian -- [*] sys4 AG http://sys4.de, +49 (89) 30 90 46 64 Franziskanerstrasse 15, 81669 Muenchen Sitz der Gesellschaft: Muenchen, Amtsgericht Muenchen: HRB 199263 Vorstand: Patrick Ben Koetter, Marc Schiffbauer Aufsichtsratsvorsitzender: Florian Kirstein _______________________________________________ dane mailing list [email protected] https://www.ietf.org/mailman/listinfo/dane
