[guardian-dev] pgp key server on gaurdianproject.info
Hans-Christoph Steiner
hans at guardianproject.info
Tue Sep 17 11:20:59 EDT 2013
I second reading up on STEED, its a good proposal.
.hc
On 09/17/2013 10:34 AM, Daniel McCarney wrote:
> Tim:
>
> I haven't been following the discussion on the gpg users mailing list, where
> someone might have already brought this up. Apologies if that's the case.
>
> Have you looked at the whitepaper Werner Koch and Marcus Brinkmann wrote on
> "STEED - Usable End-to-End Encryption"[1]. It discusses both GPG key
> distribution via DNS as well as thoughts on "trust-on-first-contact".
>
> The homepage for the project has more information[2]. I'm not sure how much
> deployment STEED has seen, the whitepaper is a few years old at this point.
>
> - Daniel
>
> [1] http://g10code.com/docs/steed-usable-e2ee.pdf
> [2] http://g10code.com/steed.html
>
> On 09/16, Tim Prepscius wrote:
>> Yah, I guess I'll do the "here are the keys for xxx at xxx you pick the
>> one you think is correct."
>>
>> The DNS issue is very real. I had a conversation once with a techy in
>> Vietnam (years ago, perhaps things have changed) who said that DNS
>> entries were hacked weekly for popular sites.
>>
>> It just seems to me that this threat could be mitigated if everyone
>> was checking their keys and their friends keys on an ongoing basis.
>>
>>
>>
>> But HC's response was pretty definite, and if gaurdianproject.info is
>> unwilling to setup some server, then 99.999% of mail servers will be
>> unwilling, and so the idea is moot.
>>
>> -tim
>>
>>
>> _______________________________________________
>> Guardian-dev mailing list
>>
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>
>> To Unsubscribe
>> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
>> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>>
>> You are subscribed as: hans at guardianproject.info
--
PGP fingerprint: 5E61 C878 0F86 295C E17D 8677 9F0F E587 374B BE81
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 939 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20130917/5a1c1575/attachment.pgp>
More information about the Guardian-dev
mailing list