[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fsuk-manchester] Keysigning (was: SFD09 – The final call for volun

From: Simon Ward
Subject: Re: [Fsuk-manchester] Keysigning (was: SFD09 – The final call for volunteers)
Date: Sun, 20 Sep 2009 13:26:02 +0100
User-agent: Mutt/1.5.20 (2009-06-14)

On Fri, Sep 18, 2009 at 02:44:02PM +0100, Dave Page wrote:
> See, signing keys using passports is IMHO a bad idea, which is why it's worth 
> having a discussion about keysigning, what it involves and what you're trying 
> to achieve with it. I won't (indeed, can't) take part in a keysigning that 
> requires passports.

Verifying identity using *only* passports is probably a bad idea, but
it’s not black and white.  With the passport, you essentially have a
third party that you presume (or not) has done some verification that
you may or may not trust to some extent.  It’s up to you to make that

It would be convenient if everybody had the same standards as you for
verifying identity, but they don’t, and that’s part of the beauty of
the OpenPGP web of trust.  You can decide how much you trust someone
to correctly verify identity and sign keys.  Again, it’s up to you to
make that decision.

A complex system that works is invariably found to have evolved from a
simple system that works.—John Gall

Attachment: signature.asc
Description: Digital signature

reply via email to

[Prev in Thread] Current Thread [Next in Thread]