On Fri 2015-05-22 11:46:23 -0400, Patrick Brunschwig wrote: > Before the keys are actually imported is done, you get a list of the > keys that you are about to import (this is especially useful for > imports from files, as you don't know what's inside). I'd say it's > enough to display User ID, creation date, fingerprint, and revocation > status. The list should allow for each key to choose how well you > trust the owner of the key. My idea is something simple that people > understand like 1 star to 5 stars with some explanation. > E.g. > - - 1 star = I don't know the owner of the key > ... > - - 5 stars = I'm very sure that the key is from the person it it > supposed to be and I know that person well. > > Depending on the number of stars, the keys are automatically signed > and trusted with a specific type of answer. > > Furthermore, it should be possible to "share" your "trust with others. > Sharing is nothing else but non-local signatures that are uploaded to > a keyserver.
What you describe above sounds good, except for the word "trust" -- i
think you're talking about validity, not ownertrust. please let's not
put the word "trust" into the UI here!
"I think this key is valid" or
"I believe this key belongs to Mary"
I'm not sure we even need 5 stars, tbh.
We might just need a checkbox "I have verified that this key belongs to
Mary", and another checkbox "Share publicly that I think this is Mary's
key"
Regards,
--dkg
signature.asc
Description: PGP signature
_______________________________________________ enigmail-users mailing list [email protected] To unsubscribe or make changes to your subscription click here: https://admin.hostpoint.ch/mailman/listinfo/enigmail-users_enigmail.net
