[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] nokeyserver annotation
|
From: |
Kiss Gabor (Bitman) |
|
Subject: |
Re: [Sks-devel] nokeyserver annotation |
|
Date: |
Tue, 20 Dec 2016 19:27:05 +0100 (CET) |
|
User-agent: |
Alpine 2.02 (DEB 1266 2009-07-14) |
> Some quick thoughts:
>
> - interesting idea,
> - to do this keyservers will have to actually do cryptography
This is the only problem I think.
But it is not too serious.
A server has to verify a signature once in a key's lifetime.
> - how does one propagates a "nokeyserver" annotation on a key in the
> SKS network when this network does not carry said key
They must not propagate but delete affected keys as soon as they recognize
'nokeyserver' identity and signature is verified.
> - It would help if you started by stating what real world problem you
> are trying to solve. You realize that it will *not* solve the problem
> where server operators are asked to remove a key from their server?
"Help yourself, please."
Key owner has possibility to upload it's key with destroyer signature to
each key server by hand where (s)he want to be deleted from.
One by one. (Is it uncomfortable? What a pity! :-)
(Don't worry. Next week somebody sets up a proxy that do this heavy job.)
Gabor
Re: [Sks-devel] nokeyserver annotation,
Kiss Gabor (Bitman) <=
Re: [Sks-devel] nokeyserver annotation, Daniel Kahn Gillmor, 2016/12/20
Re: [Sks-devel] nokeyserver annotation, Kim Minh Kaplan, 2016/12/22