[guardian-dev] pgp key server on gaurdianproject.info

Hans-Christoph Steiner hans at guardianproject.info
Tue Sep 17 11:20:59 EDT 2013 

I second reading up on STEED, its a good proposal.

.hc

On 09/17/2013 10:34 AM, Daniel McCarney wrote:
> Tim:
> 
> I haven't been following the discussion on the gpg users mailing list, where
> someone might have already brought this up. Apologies if that's the case.
> 
> Have you looked at the whitepaper Werner Koch and Marcus Brinkmann wrote on
> "STEED - Usable End-to-End Encryption"[1]. It discusses both GPG key
> distribution via DNS as well as thoughts on "trust-on-first-contact".
> 
> The homepage for the project has more information[2]. I'm not sure how much
> deployment STEED has seen, the whitepaper is a few years old at this point.
> 
> - Daniel
> 
> [1] http://g10code.com/docs/steed-usable-e2ee.pdf
> [2] http://g10code.com/steed.html
> 
> On 09/16, Tim Prepscius wrote:
>> Yah, I guess I'll do the "here are the keys for xxx at xxx you pick the
>> one you think is correct."
>>
>> The DNS issue is very real.  I had a conversation once with a techy in
>> Vietnam (years ago, perhaps things have changed) who said that DNS
>> entries were hacked weekly for popular sites.
>>
>> It just seems to me that this threat could be mitigated if everyone
>> was checking their keys and their friends keys on an ongoing basis.
>>
>>
>>
>> But HC's response was pretty definite, and if gaurdianproject.info is
>> unwilling to setup some server, then 99.999% of mail servers will be
>> unwilling, and so the idea is moot.
>>
>> -tim
>>
>>
>> _______________________________________________
>> Guardian-dev mailing list
>>
>> Post: Guardian-dev at lists.mayfirst.org
>> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>>
>> To Unsubscribe
>>         Send email to:  Guardian-dev-unsubscribe at lists.mayfirst.org
>>         Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>>
>> You are subscribed as: hans at guardianproject.info

-- 
PGP fingerprint: 5E61 C878 0F86 295C E17D  8677 9F0F E587 374B BE81

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 939 bytes
Desc: OpenPGP digital signature
URL: <http://lists.mayfirst.org/pipermail/guardian-dev/attachments/20130917/5a1c1575/attachment.pgp>

More information about the Guardian-dev mailing list