Dashamir Hoxha dijo [Tue, Jun 14, 2022 at 05:58:01PM +0200]: > I am looking forward to discussing these issues with you. > I have some experience with WKD (Web Key Directory) which is a > distributed alternative for keyservers, and is even regarded as a > replacement for them. > But I am not sure how suitable or easy is WKD for being used with > keysigning. > Is Debian already using WKD?
Debian does use WKD. It is a good alternative in many ways, but lacks in many others -- it will use if your mail provider *cares* about OpenPGP enough to run a service, and it allows for user-generated content to be served via a well-known address (i.e. https://openpgpkey.example.org/.well-known/openpgpkey/example.org/hu/hfh6c7pfzr3uop5ne7qrdwj4uo6hr49p for [email protected]). It would not work for your key, as you'd first have to convince GMail to enable said service. Besides, I might be wrong on this... but I understand WKD serves the keys stripped of any certification material.
