Hi,
I just read the dane-openpgpkey document and discussed it a bit with a
friend. And now, we have a question. I must say, I haven't followed the
discussions on this mailing list much lately, but I couldn't find an
answer to this question by quickly browsing through the openpgp-related
threads.
From what I can tell, this document only describes how to publish and
retrieve a key in DNS/DNSSEC, i.e. in what format. I don't see any
mention of a procedure by which a key would get published. Since the
domain would be controlled by the mail provider, the user cannot do this
directly. So, how does a user go about getting his public key published
in the DNS? What kind of interaction do you envision between the service
provider and the mail user? Some kind of provider-specific web
interface? Would it be useful to devise some standardized (sub-)protocol
for this, so that a MUA can easily arrange this for the user (e.g. just
after it generated the key pair)?
Regards,
Stephan.
_______________________________________________
dane mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/dane
