On Saturday 04 March 2006 14:19, Michal Vaner (Vorner) wrote: > the point with PGP is that user checks and signs the key (if he trusts it). > Therefore, key exchange can not happen automatically, since it would break > one of the main idea of PGP, that user knows who he is encrypting to.
With that in mind, another way to think about JEP-27 is that it is meant for people who have already traded PGP public keys and put trust in them. For these existing users of PGP, secure chat "just works". Now, if one or both parties were using Jabber first and have no idea what PGP is, things get more tricky. -Justin
