I participated in the Web of Trust, back in the day. That was kinda fun. The problem of adoption is the barrier to entry.
Most recently I have been using Keybase. https://keybase.io/sunsparc Brings down the barrier a bit more, though it is still pretty high for the average user to consider using PGP. Jonathan On Tue, Jul 11, 2017 at 8:26 AM, Matt plug.org <[email protected]> wrote: > I'm trying to wrap my head around the PGP key-signing idea, as I'd like to > participate tomorrow at OpenWest, but I've never really used PGP before. > > The OpenWest page regarding the party gives some information, but it seems > incomplete. https://www.openwest.org/key-signing-party/ > > From what I understand, I: > > 1. Generate a PGP keypair (gpg --gen-key). > 2. Send an email with my PUBLIC key only (not fingerprint, right?) to > Aaron > 3. Print out the fingerprint via `gpg --fingerprint " > [email protected]"` > and bring that info to the party > 4. At the party read off key info -- just fingerprint? > 5. Verify others' keys and IDs > 6. ... > > What and when is the actual "key signing"? Each verified individual signs > every other verified individual's keys (implying some basic idea that to > the extent of my knowledge, they are who they say they are)? > > Sorry if these seem like stupid questions. It's all pretty foreign to me. > > Once I get a better understanding of the idea, as an introvert, my next > challenge will be psyching myself up to make that many small human > interactions. :) > > /* > PLUG: http://plug.org, #utah on irc.freenode.net > Unsubscribe: http://plug.org/mailman/options/plug > Don't fear the penguin. > */ > /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
