On Wed, Jun 24, 2009 at 09:30:52AM +0800, Paul Wise wrote:
> Would subkeys help in this scenario? (hint hint, some good docs about
> real-world subkey usage are needed).
Subkeys cannot (to my knowledge) be used for certification (i.e. key signing).
At least not with stock gnupg.
Kind regards,
Phi
On Wed, Jun 24, 2009 at 3:14 AM, Daniel Kahn
Gillmor wrote:
> I think that misses a critical point; i want to use my OpenPGP key for a
> variety of purposes both in and out of debian. I consider it a baseline
> tool for managing my digital identity. While i'm happy to obey
> debian-specific guid
On Tue, Jun 23, 2009 at 08:52:20PM +0200, martin f krafft wrote:
> Additional metadata, e.g. number and expiration date would
> be helpful.
Actually that'd be illegal in Germany -- ID numbers of identification
documents may not be stored in databases, with exactly two exceptions:
- the issuing
On 06/23/2009 02:52 PM, martin f krafft wrote:
> Additional metadata, e.g. number and expiration date would
> be helpful.
This would certainly be useful from the smiting perspective, but might
raise privacy concerns if people don't want their passport number (or
whatever) bound to their OpenPGP ke
also sprach Daniel Kahn Gillmor [2009.06.23.1949
+0200]:
> --> govt-iss...@wot.debian.org might be a distinguished name
> identifying the apparent issuer of any validated identification,
> such as /C=US/ST=NY/ for a NY State (USA) driver's license and
> /C=US/ for an American passport. If you che
On 06/23/2009 12:34 PM, Manoj Srivastava wrote:
> Frankly, recording the details of the verification performed is
> a first step to improving the ability to assess the strength of the
> link in the web of trust. A simple key sig is not enough, there could
> be a formal process to add to