On Thu, 14 May 2020 23:01, Stefan Claas said: > you would consider including it in GnuPG too and reflecting it in the > respective RFC?
The User-IDs are an integral part of OpenPGP and at the core of its design. All kind of important information is bound to the user ids and thus a key w/o a user ID is basically useless. There is one exception for this: Derek Atkins (one of the original PGP authors) requested certain features to allow the use of a stripped down OpenPGP key by space and CPU constrained devices. We integrated this into the standard because it is better to use even a stripped down format than to come up with just another format. Direct key signatures were never intended to replace User-IDs and their self-signatures. And no, it is not a privacy issue. If you don't want to put your name or mail address into the user ID, just don't do it but use a random string or even the keys fingerprint. For the majority of use cases a mail address is still the best way to identify and even lookup a key. Salam-Shalom, Werner -- Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
