Hi Kristy, I haven’t struck a problem with a Key yet. Exchanging a Public Key should not be an issue I think, as you say they are on servers. If it were a key exchange encryption then I imagine you would have to make secure arrangements to swap decrypting keys. I think the agencies used this in the past and secure methods were use to hand keys over.
For PGP, as far as I understand, a session key is generated at the creation of each email, this is used to encrypt the text and content, then that session key is encrypted via or too the other persons Public Key, and only their Private Key can decrypt that particular session key. So exchanging Public Keys is quite safe I reason. The encrypted session key and encrypted text is bundled and emailed, at the recipients end the session key is decrypted by the recipients Private Key and then the session key is used to decrypt the text and content. That is my basic understanding. I have used the routing on the keyring to update keys, that seems to working fine. Your idea may be worthwhile, it's just that I have not struck an issue yet. Ian On 05/01/15 08:45, Kristy Chambers wrote: > Ian Mann: >> I imagine you can ask the other person for their public key, and they can >> attach it to an email. > Yes, but email is not a good communication form, for a key exchange. > >> As I say, I am just starting out using it. > Would you recommend a warning on this issue, or do you think this is too > user-unfriendly? > > Regards, > Kristy > > _______________________________________________ > enigmail-users mailing list > [email protected] > To unsubscribe or make changes to your subscription click here: > https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net >
signature.asc
Description: OpenPGP digital signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
