On Sep 6, 2013 9:10 PM, "Ted Lemon" <[email protected]> wrote: > > On Sep 6, 2013, at 8:21 PM, Melinda Shore <[email protected]> wrote: > > when you vouch for someone's identity - in an authoritative > > trust system - you're also vouching for the authenticity of > > their transactions. > > This is what I mean by "a high bar." Signing someone's PGP key should mean "I know this person as X," not "this person is X." >
Dilution of trust is a problem with PGP. "I know this person as X" is way too lax if you want the system to scale. Scott
